Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-0484 (GCVE-0-2015-0484)
Vulnerability from cvelistv5
- n/a
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T04:10:11.029Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "RHSA-2015:0857", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "name": "SUSE-SU-2015:0833", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "name": "1032120", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1032120" }, { "name": "GLSA-201603-11", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "https://security.gentoo.org/glsa/201603-11" }, { "name": "openSUSE-SU-2015:0773", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "name": "74135", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/74135" }, { "name": "openSUSE-SU-2015:0774", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "name": "RHSA-2015:0854", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2015-04-14T00:00:00", "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2016-12-30T16:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle" }, "references": [ { "name": "RHSA-2015:0857", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "name": "SUSE-SU-2015:0833", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "name": "1032120", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1032120" }, { "name": "GLSA-201603-11", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "https://security.gentoo.org/glsa/201603-11" }, { "name": "openSUSE-SU-2015:0773", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "name": "74135", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/74135" }, { "name": "openSUSE-SU-2015:0774", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "name": "RHSA-2015:0854", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2015-0484", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2015:0857", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "name": "SUSE-SU-2015:0833", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "name": "1032120", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1032120" }, { "name": "GLSA-201603-11", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201603-11" }, { "name": "openSUSE-SU-2015:0773", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "name": "74135", "refsource": "BID", "url": "http://www.securityfocus.com/bid/74135" }, { "name": "openSUSE-SU-2015:0774", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "name": "RHSA-2015:0854", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" } ] } } } }, "cveMetadata": { "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2015-0484", "datePublished": "2015-04-16T16:00:00", "dateReserved": "2014-12-17T00:00:00", "dateUpdated": "2024-08-06T04:10:11.029Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2015-0484\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2015-04-16T16:59:36.260\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en Oracle Java SE 7u76 y 8u40, y Java FX 2.2.76, permite a atacantes remotos afectar la confidencialidad, la integridad y la disponibilidad a trav\u00e9s de vectores desconocidos, una vulnerabilidad diferente a CVE-2015-0492.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update76:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2C5FA21-4D3B-4739-92A1-B87A1A63F29B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.8.0:update40:*:*:*:*:*:*\",\"matchCriteriaId\":\"8348D050-22EF-49AC-960A-ADBA1441FFC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update76:*:*:*:*:*:*\",\"matchCriteriaId\":\"50E5F104-C20F-4E6B-AD70-8FEC1B9A9B46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.8.0:update40:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB2AF8BC-7643-4CBF-83C0-CA4656AC4FB4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.2.76:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40229F01-B2C6-44EA-8DF8-C316B52F5848\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03117DF1-3BEC-4B8D-AD63-DBBDB2126081\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B072472-B463-4647-885D-E40B0115C810\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0854.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0857.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/74135\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.securitytracker.com/id/1032120\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://security.gentoo.org/glsa/201603-11\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0854.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0857.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/74135\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1032120\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201603-11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"Per Oracle: Applies to client deployment of Java only. This vulnerability can be exploited only through sandboxed Java Web Start applications and sandboxed Java applets. (http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html)\"}}" } }
cnvd-2015-02580
Vulnerability from cnvd
Title: Oracle Java SE和JavaFX JavaFX存在未明漏洞
Description:
Oracle Java SE用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。
Oracle Java SE和JavaFX的JavaFX子组件存在安全漏洞,远程攻击者可利用漏洞构建恶意WEB页,诱使用户解析,影响系统保密性完整性和可用性。
Severity: 中
Patch Name: Oracle Java SE和JavaFX JavaFX存在未明漏洞的补丁
Patch Description:
Oracle Java SE用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。
Oracle Java SE和JavaFX的JavaFX子组件存在安全漏洞,远程攻击者可利用漏洞构建恶意WEB页,诱使用户解析,影响系统保密性完整性和可用性。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description:
用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
Reference: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
Name | ['Oracle JavaFX 2.2.76', 'Oracle Java SE 7u76', 'Oracle Java SE 8u40'] |
---|
{ "bids": { "bid": { "bidNumber": "74135" } }, "cves": { "cve": { "cveNumber": "CVE-2015-0484" } }, "description": "Oracle Java SE\u7528\u4e8e\u5f00\u53d1\u548c\u90e8\u7f72\u684c\u9762\u3001\u670d\u52a1\u5668\u4ee5\u53ca\u5d4c\u5165\u8bbe\u5907\u548c\u5b9e\u65f6\u73af\u5883\u4e2d\u7684Java\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nOracle Java SE\u548cJavaFX\u7684JavaFX\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u6784\u5efa\u6076\u610fWEB\u9875\uff0c\u8bf1\u4f7f\u7528\u6237\u89e3\u6790\uff0c\u5f71\u54cd\u7cfb\u7edf\u4fdd\u5bc6\u6027\u5b8c\u6574\u6027\u548c\u53ef\u7528\u6027\u3002", "discovererName": "Oracle", "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html", "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e", "number": "CNVD-2015-02580", "openTime": "2015-04-21", "patchDescription": "Oracle Java SE\u7528\u4e8e\u5f00\u53d1\u548c\u90e8\u7f72\u684c\u9762\u3001\u670d\u52a1\u5668\u4ee5\u53ca\u5d4c\u5165\u8bbe\u5907\u548c\u5b9e\u65f6\u73af\u5883\u4e2d\u7684Java\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nOracle Java SE\u548cJavaFX\u7684JavaFX\u5b50\u7ec4\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u6784\u5efa\u6076\u610fWEB\u9875\uff0c\u8bf1\u4f7f\u7528\u6237\u89e3\u6790\uff0c\u5f71\u54cd\u7cfb\u7edf\u4fdd\u5bc6\u6027\u5b8c\u6574\u6027\u548c\u53ef\u7528\u6027\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002", "patchName": "Oracle Java SE\u548cJavaFX JavaFX\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\u7684\u8865\u4e01", "products": { "product": [ "Oracle JavaFX 2.2.76", "Oracle Java SE 7u76", "Oracle Java SE 8u40" ] }, "referenceLink": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html", "serverity": "\u4e2d", "submitTime": "2015-04-19", "title": "Oracle Java SE\u548cJavaFX JavaFX\u5b58\u5728\u672a\u660e\u6f0f\u6d1e" }
fkie_cve-2015-0484
Vulnerability from fkie_nvd
{ "configurations": [ { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update76:*:*:*:*:*:*", "matchCriteriaId": "A2C5FA21-4D3B-4739-92A1-B87A1A63F29B", "vulnerable": true }, { "criteria": "cpe:2.3:a:oracle:jdk:1.8.0:update40:*:*:*:*:*:*", "matchCriteriaId": "8348D050-22EF-49AC-960A-ADBA1441FFC0", "vulnerable": true }, { "criteria": "cpe:2.3:a:oracle:jre:1.7.0:update76:*:*:*:*:*:*", "matchCriteriaId": "50E5F104-C20F-4E6B-AD70-8FEC1B9A9B46", "vulnerable": true }, { "criteria": "cpe:2.3:a:oracle:jre:1.8.0:update40:*:*:*:*:*:*", "matchCriteriaId": "BB2AF8BC-7643-4CBF-83C0-CA4656AC4FB4", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:oracle:javafx:2.2.76:*:*:*:*:*:*:*", "matchCriteriaId": "40229F01-B2C6-44EA-8DF8-C316B52F5848", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081", "vulnerable": true }, { "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*", "matchCriteriaId": "8B072472-B463-4647-885D-E40B0115C810", "vulnerable": true } ], "negate": false, "operator": "OR" } ] } ], "cveTags": [], "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492." }, { "lang": "es", "value": "Vulnerabilidad no especificada en Oracle Java SE 7u76 y 8u40, y Java FX 2.2.76, permite a atacantes remotos afectar la confidencialidad, la integridad y la disponibilidad a trav\u00e9s de vectores desconocidos, una vulnerabilidad diferente a CVE-2015-0492." } ], "evaluatorComment": "Per Oracle: Applies to client deployment of Java only. This vulnerability can be exploited only through sandboxed Java Web Start applications and sandboxed Java applets. (http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html)", "id": "CVE-2015-0484", "lastModified": "2025-04-12T10:46:40.837", "metrics": { "cvssMetricV2": [ { "acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false } ] }, "published": "2015-04-16T16:59:36.260", "references": [ { "source": "secalert_us@oracle.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "source": "secalert_us@oracle.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "source": "secalert_us@oracle.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "source": "secalert_us@oracle.com", "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" }, { "source": "secalert_us@oracle.com", "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "source": "secalert_us@oracle.com", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "source": "secalert_us@oracle.com", "url": "http://www.securityfocus.com/bid/74135" }, { "source": "secalert_us@oracle.com", "url": "http://www.securitytracker.com/id/1032120" }, { "source": "secalert_us@oracle.com", "url": "https://security.gentoo.org/glsa/201603-11" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/74135" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1032120" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.gentoo.org/glsa/201603-11" } ], "sourceIdentifier": "secalert_us@oracle.com", "vulnStatus": "Deferred", "weaknesses": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ], "source": "nvd@nist.gov", "type": "Primary" } ] }
ghsa-gv8j-f9gg-mrg2
Vulnerability from github
Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.
{ "affected": [], "aliases": [ "CVE-2015-0484" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2015-04-16T16:59:00Z", "severity": "MODERATE" }, "details": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "id": "GHSA-gv8j-f9gg-mrg2", "modified": "2022-05-13T01:17:18Z", "published": "2022-05-13T01:17:18Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484" }, { "type": "WEB", "url": "https://security.gentoo.org/glsa/201603-11" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/74135" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1032120" } ], "schema_version": "1.4.0", "severity": [] }
rhsa-2015:0854
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.8.0-oracle packages that fix several security issues are now\navailable for Oracle Java for Red Hat Enterprise Linux 6 and 7.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 8 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2005-1080, CVE-2015-0458, CVE-2015-0459, CVE-2015-0460, CVE-2015-0469,\nCVE-2015-0470, CVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0484,\nCVE-2015-0486, CVE-2015-0488, CVE-2015-0491, CVE-2015-0492)\n\nThe CVE-2015-0478 issue was discovered by Florian Weimer of Red Hat\nProduct Security.\n\nAll users of java-1.8.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 8 Update 45 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:0854", "url": "https://access.redhat.com/errata/RHSA-2015:0854" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "1211387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211387" }, { "category": "external", "summary": "1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "1211774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211774" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0854.json" } ], "title": "Red Hat Security Advisory: java-1.8.0-oracle security update", "tracking": { "current_release_date": "2025-01-12T19:43:54+00:00", "generator": { "date": "2025-01-12T19:43:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.6" } }, "id": "RHSA-2015:0854", "initial_release_date": "2015-04-17T10:28:46+00:00", "revision_history": [ { "date": "2015-04-17T10:28:46+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-15T10:34:03+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-01-12T19:43:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2005-1080", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2010-05-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "606442" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "jar: directory traversal vulnerability", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1080" }, { "category": "external", "summary": "RHBZ#606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1080", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1080" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "jar: directory traversal vulnerability" }, { "cve": "CVE-2015-0458", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211771" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "RHBZ#1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0458", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)" }, { "cve": "CVE-2015-0459", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211768" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "RHBZ#1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0459", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0460", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211285" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the Hotspot component in OpenJDK handled phantom references. An untrusted Java application or applet could use this flaw to corrupt the Java Virtual Machine memory and, possibly, execute arbitrary code, bypassing Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "RHBZ#1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0460", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)" }, { "cve": "CVE-2015-0469", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210829" } ], "notes": [ { "category": "description", "text": "An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "RHBZ#1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0469", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)" }, { "cve": "CVE-2015-0470", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211387" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Hotspot component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of default methods (Hotspot, 8065366)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0470" }, { "category": "external", "summary": "RHBZ#1211387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0470", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect handling of default methods (Hotspot, 8065366)" }, { "cve": "CVE-2015-0477", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211299" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Beans component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "RHBZ#1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0477", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0477" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)" }, { "acknowledgments": [ { "names": [ "Florian Weimer" ], "organization": "Red Hat Product Security", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2015-0478", "cwe": { "id": "CWE-358", "name": "Improperly Implemented Security Check for Standard" }, "discovery_date": "2015-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210355" } ], "notes": [ { "category": "description", "text": "It was found that the RSA implementation in the JCE component in OpenJDK did not follow recommended practices for implementing RSA signatures.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "RHBZ#1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0478", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf" }, { "category": "external", "summary": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/", "url": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)" }, { "cve": "CVE-2015-0480", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211504" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: jar directory traversal issues (Tools, 8064601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "RHBZ#1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0480", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: jar directory traversal issues (Tools, 8064601)" }, { "cve": "CVE-2015-0484", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "RHBZ#1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0484", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" }, { "cve": "CVE-2015-0486", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211774" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 8u40 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0486" }, { "category": "external", "summary": "RHBZ#1211774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211774" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0486", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0486" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0486", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0486" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 8u45 (Deployment)" }, { "cve": "CVE-2015-0488", "cwe": { "id": "CWE-248", "name": "Uncaught Exception" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211543" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "RHBZ#1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0488", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)" }, { "cve": "CVE-2015-0491", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "RHBZ#1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0491", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0492", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "RHBZ#1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0492", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" } ] }
RHSA-2015:0854
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.8.0-oracle packages that fix several security issues are now\navailable for Oracle Java for Red Hat Enterprise Linux 6 and 7.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 8 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2005-1080, CVE-2015-0458, CVE-2015-0459, CVE-2015-0460, CVE-2015-0469,\nCVE-2015-0470, CVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0484,\nCVE-2015-0486, CVE-2015-0488, CVE-2015-0491, CVE-2015-0492)\n\nThe CVE-2015-0478 issue was discovered by Florian Weimer of Red Hat\nProduct Security.\n\nAll users of java-1.8.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 8 Update 45 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:0854", "url": "https://access.redhat.com/errata/RHSA-2015:0854" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "1211387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211387" }, { "category": "external", "summary": "1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "1211774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211774" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0854.json" } ], "title": "Red Hat Security Advisory: java-1.8.0-oracle security update", "tracking": { "current_release_date": "2025-01-12T19:43:54+00:00", "generator": { "date": "2025-01-12T19:43:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.6" } }, "id": "RHSA-2015:0854", "initial_release_date": "2015-04-17T10:28:46+00:00", "revision_history": [ { "date": "2015-04-17T10:28:46+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-15T10:34:03+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-01-12T19:43:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2005-1080", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2010-05-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "606442" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "jar: directory traversal vulnerability", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1080" }, { "category": "external", "summary": "RHBZ#606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1080", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1080" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "jar: directory traversal vulnerability" }, { "cve": "CVE-2015-0458", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211771" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "RHBZ#1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0458", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)" }, { "cve": "CVE-2015-0459", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211768" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "RHBZ#1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0459", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0460", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211285" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the Hotspot component in OpenJDK handled phantom references. An untrusted Java application or applet could use this flaw to corrupt the Java Virtual Machine memory and, possibly, execute arbitrary code, bypassing Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "RHBZ#1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0460", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)" }, { "cve": "CVE-2015-0469", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210829" } ], "notes": [ { "category": "description", "text": "An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "RHBZ#1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0469", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)" }, { "cve": "CVE-2015-0470", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211387" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Hotspot component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of default methods (Hotspot, 8065366)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0470" }, { "category": "external", "summary": "RHBZ#1211387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0470", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect handling of default methods (Hotspot, 8065366)" }, { "cve": "CVE-2015-0477", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211299" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Beans component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "RHBZ#1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0477", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0477" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)" }, { "acknowledgments": [ { "names": [ "Florian Weimer" ], "organization": "Red Hat Product Security", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2015-0478", "cwe": { "id": "CWE-358", "name": "Improperly Implemented Security Check for Standard" }, "discovery_date": "2015-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210355" } ], "notes": [ { "category": "description", "text": "It was found that the RSA implementation in the JCE component in OpenJDK did not follow recommended practices for implementing RSA signatures.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "RHBZ#1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0478", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf" }, { "category": "external", "summary": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/", "url": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)" }, { "cve": "CVE-2015-0480", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211504" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: jar directory traversal issues (Tools, 8064601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "RHBZ#1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0480", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: jar directory traversal issues (Tools, 8064601)" }, { "cve": "CVE-2015-0484", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "RHBZ#1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0484", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" }, { "cve": "CVE-2015-0486", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211774" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 8u40 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0486" }, { "category": "external", "summary": "RHBZ#1211774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211774" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0486", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0486" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0486", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0486" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 8u45 (Deployment)" }, { "cve": "CVE-2015-0488", "cwe": { "id": "CWE-248", "name": "Uncaught Exception" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211543" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "RHBZ#1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0488", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)" }, { "cve": "CVE-2015-0491", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "RHBZ#1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0491", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0492", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "RHBZ#1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0492", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" } ] }
rhsa-2015:0857
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2005-1080, CVE-2015-0458, CVE-2015-0459, CVE-2015-0460, CVE-2015-0469,\nCVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0484, CVE-2015-0488,\nCVE-2015-0491, CVE-2015-0492)\n\nThe CVE-2015-0478 issue was discovered by Florian Weimer of Red Hat\nProduct Security.\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 79 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:0857", "url": "https://access.redhat.com/errata/RHSA-2015:0857" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0857.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2025-01-12T19:43:59+00:00", "generator": { "date": "2025-01-12T19:43:59+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.6" } }, "id": "RHSA-2015:0857", "initial_release_date": "2015-04-20T14:07:38+00:00", "revision_history": [ { "date": "2015-04-20T14:07:38+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-15T10:35:29+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-01-12T19:43:59+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el7_1?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el7_1?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2005-1080", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2010-05-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "606442" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "jar: directory traversal vulnerability", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1080" }, { "category": "external", "summary": "RHBZ#606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1080", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1080" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "jar: directory traversal vulnerability" }, { "cve": "CVE-2015-0458", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211771" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "RHBZ#1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0458", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)" }, { "cve": "CVE-2015-0459", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211768" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "RHBZ#1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0459", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0460", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211285" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the Hotspot component in OpenJDK handled phantom references. An untrusted Java application or applet could use this flaw to corrupt the Java Virtual Machine memory and, possibly, execute arbitrary code, bypassing Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "RHBZ#1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0460", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)" }, { "cve": "CVE-2015-0469", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210829" } ], "notes": [ { "category": "description", "text": "An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "RHBZ#1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0469", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)" }, { "cve": "CVE-2015-0477", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211299" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Beans component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "RHBZ#1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0477", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0477" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)" }, { "acknowledgments": [ { "names": [ "Florian Weimer" ], "organization": "Red Hat Product Security", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2015-0478", "cwe": { "id": "CWE-358", "name": "Improperly Implemented Security Check for Standard" }, "discovery_date": "2015-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210355" } ], "notes": [ { "category": "description", "text": "It was found that the RSA implementation in the JCE component in OpenJDK did not follow recommended practices for implementing RSA signatures.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "RHBZ#1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0478", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf" }, { "category": "external", "summary": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/", "url": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)" }, { "cve": "CVE-2015-0480", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211504" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: jar directory traversal issues (Tools, 8064601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "RHBZ#1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0480", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: jar directory traversal issues (Tools, 8064601)" }, { "cve": "CVE-2015-0484", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "RHBZ#1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0484", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" }, { "cve": "CVE-2015-0488", "cwe": { "id": "CWE-248", "name": "Uncaught Exception" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211543" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "RHBZ#1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0488", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)" }, { "cve": "CVE-2015-0491", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "RHBZ#1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0491", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0492", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "RHBZ#1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0492", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" } ] }
rhsa-2015_0854
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.8.0-oracle packages that fix several security issues are now\navailable for Oracle Java for Red Hat Enterprise Linux 6 and 7.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 8 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2005-1080, CVE-2015-0458, CVE-2015-0459, CVE-2015-0460, CVE-2015-0469,\nCVE-2015-0470, CVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0484,\nCVE-2015-0486, CVE-2015-0488, CVE-2015-0491, CVE-2015-0492)\n\nThe CVE-2015-0478 issue was discovered by Florian Weimer of Red Hat\nProduct Security.\n\nAll users of java-1.8.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 8 Update 45 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:0854", "url": "https://access.redhat.com/errata/RHSA-2015:0854" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "1211387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211387" }, { "category": "external", "summary": "1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "1211774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211774" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0854.json" } ], "title": "Red Hat Security Advisory: java-1.8.0-oracle security update", "tracking": { "current_release_date": "2024-11-14T18:08:09+00:00", "generator": { "date": "2024-11-14T18:08:09+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2015:0854", "initial_release_date": "2015-04-17T10:28:46+00:00", "revision_history": [ { "date": "2015-04-17T10:28:46+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-15T10:34:03+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T18:08:09+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el6_6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-src@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-plugin@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-devel@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-javafx@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product_id": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-oracle-jdbc@1.8.0.45-1jpp.2.el6_6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" }, "product_reference": "java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2005-1080", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2010-05-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "606442" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "jar: directory traversal vulnerability", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1080" }, { "category": "external", "summary": "RHBZ#606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1080", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1080" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "jar: directory traversal vulnerability" }, { "cve": "CVE-2015-0458", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211771" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "RHBZ#1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0458", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)" }, { "cve": "CVE-2015-0459", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211768" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "RHBZ#1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0459", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0460", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211285" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the Hotspot component in OpenJDK handled phantom references. An untrusted Java application or applet could use this flaw to corrupt the Java Virtual Machine memory and, possibly, execute arbitrary code, bypassing Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "RHBZ#1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0460", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)" }, { "cve": "CVE-2015-0469", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210829" } ], "notes": [ { "category": "description", "text": "An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "RHBZ#1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0469", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)" }, { "cve": "CVE-2015-0470", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211387" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Hotspot component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of default methods (Hotspot, 8065366)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0470" }, { "category": "external", "summary": "RHBZ#1211387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0470", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect handling of default methods (Hotspot, 8065366)" }, { "cve": "CVE-2015-0477", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211299" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Beans component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "RHBZ#1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0477", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0477" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)" }, { "acknowledgments": [ { "names": [ "Florian Weimer" ], "organization": "Red Hat Product Security", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2015-0478", "cwe": { "id": "CWE-358", "name": "Improperly Implemented Security Check for Standard" }, "discovery_date": "2015-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210355" } ], "notes": [ { "category": "description", "text": "It was found that the RSA implementation in the JCE component in OpenJDK did not follow recommended practices for implementing RSA signatures.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "RHBZ#1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0478", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf" }, { "category": "external", "summary": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/", "url": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)" }, { "cve": "CVE-2015-0480", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211504" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: jar directory traversal issues (Tools, 8064601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "RHBZ#1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0480", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: jar directory traversal issues (Tools, 8064601)" }, { "cve": "CVE-2015-0484", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "RHBZ#1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0484", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" }, { "cve": "CVE-2015-0486", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211774" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 8u40 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0486" }, { "category": "external", "summary": "RHBZ#1211774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211774" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0486", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0486" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0486", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0486" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 8u45 (Deployment)" }, { "cve": "CVE-2015-0488", "cwe": { "id": "CWE-248", "name": "Uncaught Exception" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211543" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "RHBZ#1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0488", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)" }, { "cve": "CVE-2015-0491", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "RHBZ#1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0491", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0492", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "RHBZ#1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0492", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-17T10:28:46+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0854" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-devel-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-javafx-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-jdbc-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-plugin-1:1.8.0.45-1jpp.2.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.8.0-oracle-src-1:1.8.0.45-1jpp.2.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" } ] }
rhsa-2015_0857
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2005-1080, CVE-2015-0458, CVE-2015-0459, CVE-2015-0460, CVE-2015-0469,\nCVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0484, CVE-2015-0488,\nCVE-2015-0491, CVE-2015-0492)\n\nThe CVE-2015-0478 issue was discovered by Florian Weimer of Red Hat\nProduct Security.\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 79 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:0857", "url": "https://access.redhat.com/errata/RHSA-2015:0857" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0857.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2024-11-14T18:08:15+00:00", "generator": { "date": "2024-11-14T18:08:15+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2015:0857", "initial_release_date": "2015-04-20T14:07:38+00:00", "revision_history": [ { "date": "2015-04-20T14:07:38+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-15T10:35:29+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T18:08:15+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el7_1?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el7_1?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2005-1080", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2010-05-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "606442" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "jar: directory traversal vulnerability", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1080" }, { "category": "external", "summary": "RHBZ#606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1080", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1080" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "jar: directory traversal vulnerability" }, { "cve": "CVE-2015-0458", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211771" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "RHBZ#1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0458", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)" }, { "cve": "CVE-2015-0459", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211768" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "RHBZ#1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0459", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0460", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211285" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the Hotspot component in OpenJDK handled phantom references. An untrusted Java application or applet could use this flaw to corrupt the Java Virtual Machine memory and, possibly, execute arbitrary code, bypassing Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "RHBZ#1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0460", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)" }, { "cve": "CVE-2015-0469", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210829" } ], "notes": [ { "category": "description", "text": "An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "RHBZ#1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0469", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)" }, { "cve": "CVE-2015-0477", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211299" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Beans component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "RHBZ#1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0477", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0477" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)" }, { "acknowledgments": [ { "names": [ "Florian Weimer" ], "organization": "Red Hat Product Security", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2015-0478", "cwe": { "id": "CWE-358", "name": "Improperly Implemented Security Check for Standard" }, "discovery_date": "2015-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210355" } ], "notes": [ { "category": "description", "text": "It was found that the RSA implementation in the JCE component in OpenJDK did not follow recommended practices for implementing RSA signatures.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "RHBZ#1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0478", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf" }, { "category": "external", "summary": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/", "url": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)" }, { "cve": "CVE-2015-0480", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211504" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: jar directory traversal issues (Tools, 8064601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "RHBZ#1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0480", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: jar directory traversal issues (Tools, 8064601)" }, { "cve": "CVE-2015-0484", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "RHBZ#1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0484", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" }, { "cve": "CVE-2015-0488", "cwe": { "id": "CWE-248", "name": "Uncaught Exception" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211543" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "RHBZ#1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0488", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)" }, { "cve": "CVE-2015-0491", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "RHBZ#1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0491", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0492", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "RHBZ#1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0492", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" } ] }
RHSA-2015:0857
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7.\n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2005-1080, CVE-2015-0458, CVE-2015-0459, CVE-2015-0460, CVE-2015-0469,\nCVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0484, CVE-2015-0488,\nCVE-2015-0491, CVE-2015-0492)\n\nThe CVE-2015-0478 issue was discovered by Florian Weimer of Red Hat\nProduct Security.\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 79 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2015:0857", "url": "https://access.redhat.com/errata/RHSA-2015:0857" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0857.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2025-01-12T19:43:59+00:00", "generator": { "date": "2025-01-12T19:43:59+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.6" } }, "id": "RHSA-2015:0857", "initial_release_date": "2015-04-20T14:07:38+00:00", "revision_history": [ { "date": "2015-04-20T14:07:38+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-15T10:35:29+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-01-12T19:43:59+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el5_11?arch=i586\u0026epoch=1" } } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el5_11?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el7_1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el6_6?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el7_1?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el7_1?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.79-1jpp.1.el6_6?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client 5", "product_id": "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.11.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.1.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2005-1080", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2010-05-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "606442" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "jar: directory traversal vulnerability", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1080" }, { "category": "external", "summary": "RHBZ#606442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=606442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1080", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1080" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1080" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "jar: directory traversal vulnerability" }, { "cve": "CVE-2015-0458", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211771" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "RHBZ#1211771", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211771" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0458", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)" }, { "cve": "CVE-2015-0459", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211768" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "RHBZ#1211768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211768" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0459", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0460", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211285" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the Hotspot component in OpenJDK handled phantom references. An untrusted Java application or applet could use this flaw to corrupt the Java Virtual Machine memory and, possibly, execute arbitrary code, bypassing Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "RHBZ#1211285", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211285" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0460", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incorrect handling of phantom references (Hotspot, 8071931)" }, { "cve": "CVE-2015-0469", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210829" } ], "notes": [ { "category": "description", "text": "An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "RHBZ#1210829", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210829" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0469", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)" }, { "cve": "CVE-2015-0477", "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211299" } ], "notes": [ { "category": "description", "text": "A flaw was discovered in the Beans component in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "RHBZ#1211299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211299" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0477", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0477" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0477" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)" }, { "acknowledgments": [ { "names": [ "Florian Weimer" ], "organization": "Red Hat Product Security", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2015-0478", "cwe": { "id": "CWE-358", "name": "Improperly Implemented Security Check for Standard" }, "discovery_date": "2015-01-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1210355" } ], "notes": [ { "category": "description", "text": "It was found that the RSA implementation in the JCE component in OpenJDK did not follow recommended practices for implementing RSA signatures.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "RHBZ#1210355", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210355" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0478", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" }, { "category": "external", "summary": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf", "url": "https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf" }, { "category": "external", "summary": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/", "url": "https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726)" }, { "cve": "CVE-2015-0480", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211504" } ], "notes": [ { "category": "description", "text": "A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: jar directory traversal issues (Tools, 8064601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "RHBZ#1211504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211504" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0480", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2005-01-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: jar directory traversal issues (Tools, 8064601)" }, { "cve": "CVE-2015-0484", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "RHBZ#1211773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0484", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0484" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" }, { "cve": "CVE-2015-0488", "cwe": { "id": "CWE-248", "name": "Uncaught Exception" }, "discovery_date": "2015-04-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211543" } ], "notes": [ { "category": "description", "text": "A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "RHBZ#1211543", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211543" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0488", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0488" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)" }, { "cve": "CVE-2015-0491", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "RHBZ#1211769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0491", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0491" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)" }, { "cve": "CVE-2015-0492", "discovery_date": "2015-04-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1211770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "RHBZ#1211770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1211770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2015-0492", "url": "https://www.cve.org/CVERecord?id=CVE-2015-0492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0492" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA" } ], "release_date": "2015-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2015-04-20T14:07:38+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2015:0857" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Client-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el5_11.x86_64", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.i586", "5Server-OracleJava-5.11.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el5_11.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Client-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6ComputeNode-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Server-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el6_6.x86_64", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.i686", "6Workstation-OracleJava-6.6.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el6_6.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Client-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7ComputeNode-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Server-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.i686", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-devel-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-javafx-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-jdbc-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-plugin-1:1.7.0.79-1jpp.1.el7_1.x86_64", "7Workstation-OracleJava-7.1.Z:java-1.7.0-oracle-src-1:1.7.0.79-1jpp.1.el7_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)" } ] }
gsd-2015-0484
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2015-0484", "description": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "id": "GSD-2015-0484", "references": [ "https://www.suse.com/security/cve/CVE-2015-0484.html", "https://access.redhat.com/errata/RHSA-2015:0857", "https://access.redhat.com/errata/RHSA-2015:0854" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2015-0484" ], "details": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "id": "GSD-2015-0484", "modified": "2023-12-13T01:19:58.981824Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2015-0484", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2015:0857", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "name": "SUSE-SU-2015:0833", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "name": "1032120", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1032120" }, { "name": "GLSA-201603-11", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201603-11" }, { "name": "openSUSE-SU-2015:0773", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "name": "74135", "refsource": "BID", "url": "http://www.securityfocus.com/bid/74135" }, { "name": "openSUSE-SU-2015:0774", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "name": "RHSA-2015:0854", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.8.0:update40:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update76:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update76:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.8.0:update40:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.2.76:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2015-0484" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html" }, { "name": "openSUSE-SU-2015:0774", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00018.html" }, { "name": "openSUSE-SU-2015:0773", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00017.html" }, { "name": "SUSE-SU-2015:0833", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00002.html" }, { "name": "74135", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/74135" }, { "name": "GLSA-201603-11", "refsource": "GENTOO", "tags": [], "url": "https://security.gentoo.org/glsa/201603-11" }, { "name": "1032120", "refsource": "SECTRACK", "tags": [], "url": "http://www.securitytracker.com/id/1032120" }, { "name": "RHSA-2015:0857", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2015-0857.html" }, { "name": "RHSA-2015:0854", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2015-0854.html" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2022-05-13T14:57Z", "publishedDate": "2015-04-16T16:59Z" } } }
suse-su-2015:0833-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for Java OpenJDK", "title": "Title of the patch" }, { "category": "description", "text": "\nOracle Critical Patch Update Advisory - October 2014\n\nDescription:\n\nA Critical Patch Update (CPU) is a collection of patches for multiple \nsecurity vulnerabilities.\n\nFind more information here: \nhttp://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html\n\u003chttp://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html\u003e\n\n", "title": "Description of the patch" }, { "category": "details", "text": "sledsp3-java-1_7_0-openjdk", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0833-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2015:0833-1", "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150833-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2015:0833-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2015-May/001371.html" }, { "category": "self", "summary": "SUSE Bug 828665", "url": "https://bugzilla.suse.com/828665" }, { "category": "self", "summary": "SUSE Bug 846999", "url": "https://bugzilla.suse.com/846999" }, { "category": "self", "summary": "SUSE Bug 858818", "url": "https://bugzilla.suse.com/858818" }, { "category": "self", "summary": "SUSE Bug 873873", "url": "https://bugzilla.suse.com/873873" }, { "category": "self", "summary": "SUSE Bug 887530", "url": "https://bugzilla.suse.com/887530" }, { "category": "self", "summary": "SUSE Bug 901242", "url": "https://bugzilla.suse.com/901242" }, { "category": "self", "summary": "SUSE Bug 914041", "url": "https://bugzilla.suse.com/914041" }, { "category": "self", "summary": "SUSE Bug 927591", "url": "https://bugzilla.suse.com/927591" }, { "category": "self", "summary": "SUSE CVE CVE-2013-1500 page", "url": "https://www.suse.com/security/cve/CVE-2013-1500/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-1571 page", "url": "https://www.suse.com/security/cve/CVE-2013-1571/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2407 page", "url": "https://www.suse.com/security/cve/CVE-2013-2407/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2412 page", "url": "https://www.suse.com/security/cve/CVE-2013-2412/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2443 page", "url": "https://www.suse.com/security/cve/CVE-2013-2443/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2444 page", "url": "https://www.suse.com/security/cve/CVE-2013-2444/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2445 page", "url": "https://www.suse.com/security/cve/CVE-2013-2445/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2446 page", "url": "https://www.suse.com/security/cve/CVE-2013-2446/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2447 page", "url": "https://www.suse.com/security/cve/CVE-2013-2447/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2448 page", "url": "https://www.suse.com/security/cve/CVE-2013-2448/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2449 page", "url": "https://www.suse.com/security/cve/CVE-2013-2449/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2450 page", "url": "https://www.suse.com/security/cve/CVE-2013-2450/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2451 page", "url": "https://www.suse.com/security/cve/CVE-2013-2451/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2452 page", "url": "https://www.suse.com/security/cve/CVE-2013-2452/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2453 page", "url": "https://www.suse.com/security/cve/CVE-2013-2453/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2454 page", "url": "https://www.suse.com/security/cve/CVE-2013-2454/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2455 page", "url": "https://www.suse.com/security/cve/CVE-2013-2455/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2456 page", "url": "https://www.suse.com/security/cve/CVE-2013-2456/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2457 page", "url": "https://www.suse.com/security/cve/CVE-2013-2457/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2458 page", "url": "https://www.suse.com/security/cve/CVE-2013-2458/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2459 page", "url": "https://www.suse.com/security/cve/CVE-2013-2459/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2460 page", "url": "https://www.suse.com/security/cve/CVE-2013-2460/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2461 page", "url": "https://www.suse.com/security/cve/CVE-2013-2461/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2463 page", "url": "https://www.suse.com/security/cve/CVE-2013-2463/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2465 page", "url": "https://www.suse.com/security/cve/CVE-2013-2465/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2469 page", "url": "https://www.suse.com/security/cve/CVE-2013-2469/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2470 page", "url": "https://www.suse.com/security/cve/CVE-2013-2470/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2471 page", "url": "https://www.suse.com/security/cve/CVE-2013-2471/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2472 page", "url": "https://www.suse.com/security/cve/CVE-2013-2472/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2473 page", "url": "https://www.suse.com/security/cve/CVE-2013-2473/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-3829 page", "url": "https://www.suse.com/security/cve/CVE-2013-3829/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-4002 page", "url": "https://www.suse.com/security/cve/CVE-2013-4002/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5772 page", "url": "https://www.suse.com/security/cve/CVE-2013-5772/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5774 page", "url": "https://www.suse.com/security/cve/CVE-2013-5774/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5778 page", "url": "https://www.suse.com/security/cve/CVE-2013-5778/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5780 page", "url": "https://www.suse.com/security/cve/CVE-2013-5780/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5782 page", "url": "https://www.suse.com/security/cve/CVE-2013-5782/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5783 page", "url": "https://www.suse.com/security/cve/CVE-2013-5783/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5784 page", "url": "https://www.suse.com/security/cve/CVE-2013-5784/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5790 page", "url": "https://www.suse.com/security/cve/CVE-2013-5790/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5797 page", "url": "https://www.suse.com/security/cve/CVE-2013-5797/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5800 page", "url": "https://www.suse.com/security/cve/CVE-2013-5800/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5802 page", "url": "https://www.suse.com/security/cve/CVE-2013-5802/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5803 page", "url": "https://www.suse.com/security/cve/CVE-2013-5803/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5804 page", "url": "https://www.suse.com/security/cve/CVE-2013-5804/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5805 page", "url": "https://www.suse.com/security/cve/CVE-2013-5805/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5806 page", "url": "https://www.suse.com/security/cve/CVE-2013-5806/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5809 page", "url": "https://www.suse.com/security/cve/CVE-2013-5809/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5814 page", "url": "https://www.suse.com/security/cve/CVE-2013-5814/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5817 page", "url": "https://www.suse.com/security/cve/CVE-2013-5817/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5820 page", "url": "https://www.suse.com/security/cve/CVE-2013-5820/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5823 page", "url": "https://www.suse.com/security/cve/CVE-2013-5823/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5825 page", "url": "https://www.suse.com/security/cve/CVE-2013-5825/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5829 page", "url": "https://www.suse.com/security/cve/CVE-2013-5829/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5830 page", "url": "https://www.suse.com/security/cve/CVE-2013-5830/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5840 page", "url": "https://www.suse.com/security/cve/CVE-2013-5840/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5842 page", "url": "https://www.suse.com/security/cve/CVE-2013-5842/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5849 page", "url": "https://www.suse.com/security/cve/CVE-2013-5849/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5850 page", "url": "https://www.suse.com/security/cve/CVE-2013-5850/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5851 page", "url": "https://www.suse.com/security/cve/CVE-2013-5851/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5878 page", "url": "https://www.suse.com/security/cve/CVE-2013-5878/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5884 page", "url": "https://www.suse.com/security/cve/CVE-2013-5884/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5893 page", "url": "https://www.suse.com/security/cve/CVE-2013-5893/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5896 page", "url": "https://www.suse.com/security/cve/CVE-2013-5896/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5907 page", "url": "https://www.suse.com/security/cve/CVE-2013-5907/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5910 page", "url": "https://www.suse.com/security/cve/CVE-2013-5910/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-6629 page", "url": "https://www.suse.com/security/cve/CVE-2013-6629/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-6954 page", "url": "https://www.suse.com/security/cve/CVE-2013-6954/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0368 page", "url": "https://www.suse.com/security/cve/CVE-2014-0368/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0373 page", "url": "https://www.suse.com/security/cve/CVE-2014-0373/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0376 page", "url": "https://www.suse.com/security/cve/CVE-2014-0376/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0411 page", "url": "https://www.suse.com/security/cve/CVE-2014-0411/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0416 page", "url": "https://www.suse.com/security/cve/CVE-2014-0416/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0422 page", "url": "https://www.suse.com/security/cve/CVE-2014-0422/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0423 page", "url": "https://www.suse.com/security/cve/CVE-2014-0423/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0428 page", "url": "https://www.suse.com/security/cve/CVE-2014-0428/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0429 page", "url": "https://www.suse.com/security/cve/CVE-2014-0429/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0446 page", "url": "https://www.suse.com/security/cve/CVE-2014-0446/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0451 page", "url": "https://www.suse.com/security/cve/CVE-2014-0451/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0452 page", "url": "https://www.suse.com/security/cve/CVE-2014-0452/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0453 page", "url": "https://www.suse.com/security/cve/CVE-2014-0453/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0454 page", "url": "https://www.suse.com/security/cve/CVE-2014-0454/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0455 page", "url": "https://www.suse.com/security/cve/CVE-2014-0455/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0456 page", "url": "https://www.suse.com/security/cve/CVE-2014-0456/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0457 page", "url": "https://www.suse.com/security/cve/CVE-2014-0457/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0458 page", "url": "https://www.suse.com/security/cve/CVE-2014-0458/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0459 page", "url": "https://www.suse.com/security/cve/CVE-2014-0459/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0460 page", "url": "https://www.suse.com/security/cve/CVE-2014-0460/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0461 page", "url": "https://www.suse.com/security/cve/CVE-2014-0461/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-1876 page", "url": "https://www.suse.com/security/cve/CVE-2014-1876/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2397 page", "url": "https://www.suse.com/security/cve/CVE-2014-2397/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2398 page", "url": "https://www.suse.com/security/cve/CVE-2014-2398/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2402 page", "url": "https://www.suse.com/security/cve/CVE-2014-2402/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2403 page", "url": "https://www.suse.com/security/cve/CVE-2014-2403/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2412 page", "url": "https://www.suse.com/security/cve/CVE-2014-2412/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2413 page", "url": "https://www.suse.com/security/cve/CVE-2014-2413/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2414 page", "url": "https://www.suse.com/security/cve/CVE-2014-2414/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2421 page", "url": "https://www.suse.com/security/cve/CVE-2014-2421/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2423 page", "url": "https://www.suse.com/security/cve/CVE-2014-2423/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2427 page", "url": "https://www.suse.com/security/cve/CVE-2014-2427/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2483 page", "url": "https://www.suse.com/security/cve/CVE-2014-2483/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2490 page", "url": "https://www.suse.com/security/cve/CVE-2014-2490/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-3566 page", "url": "https://www.suse.com/security/cve/CVE-2014-3566/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4208 page", "url": "https://www.suse.com/security/cve/CVE-2014-4208/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4209 page", "url": "https://www.suse.com/security/cve/CVE-2014-4209/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4216 page", "url": "https://www.suse.com/security/cve/CVE-2014-4216/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4218 page", "url": "https://www.suse.com/security/cve/CVE-2014-4218/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4219 page", "url": "https://www.suse.com/security/cve/CVE-2014-4219/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4220 page", "url": "https://www.suse.com/security/cve/CVE-2014-4220/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4221 page", "url": "https://www.suse.com/security/cve/CVE-2014-4221/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4223 page", "url": "https://www.suse.com/security/cve/CVE-2014-4223/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4227 page", "url": "https://www.suse.com/security/cve/CVE-2014-4227/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4244 page", "url": "https://www.suse.com/security/cve/CVE-2014-4244/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4247 page", "url": "https://www.suse.com/security/cve/CVE-2014-4247/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4252 page", "url": "https://www.suse.com/security/cve/CVE-2014-4252/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4262 page", "url": "https://www.suse.com/security/cve/CVE-2014-4262/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4263 page", "url": "https://www.suse.com/security/cve/CVE-2014-4263/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4264 page", "url": "https://www.suse.com/security/cve/CVE-2014-4264/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4265 page", "url": "https://www.suse.com/security/cve/CVE-2014-4265/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4266 page", "url": "https://www.suse.com/security/cve/CVE-2014-4266/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4268 page", "url": "https://www.suse.com/security/cve/CVE-2014-4268/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4288 page", "url": "https://www.suse.com/security/cve/CVE-2014-4288/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6456 page", "url": "https://www.suse.com/security/cve/CVE-2014-6456/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6457 page", "url": "https://www.suse.com/security/cve/CVE-2014-6457/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6458 page", "url": "https://www.suse.com/security/cve/CVE-2014-6458/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6466 page", "url": "https://www.suse.com/security/cve/CVE-2014-6466/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6468 page", "url": "https://www.suse.com/security/cve/CVE-2014-6468/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6476 page", "url": "https://www.suse.com/security/cve/CVE-2014-6476/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6485 page", "url": "https://www.suse.com/security/cve/CVE-2014-6485/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6492 page", "url": "https://www.suse.com/security/cve/CVE-2014-6492/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6493 page", "url": "https://www.suse.com/security/cve/CVE-2014-6493/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6502 page", "url": "https://www.suse.com/security/cve/CVE-2014-6502/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6503 page", "url": "https://www.suse.com/security/cve/CVE-2014-6503/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6504 page", "url": "https://www.suse.com/security/cve/CVE-2014-6504/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6506 page", "url": "https://www.suse.com/security/cve/CVE-2014-6506/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6511 page", "url": "https://www.suse.com/security/cve/CVE-2014-6511/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6512 page", "url": "https://www.suse.com/security/cve/CVE-2014-6512/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6513 page", "url": "https://www.suse.com/security/cve/CVE-2014-6513/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6515 page", "url": "https://www.suse.com/security/cve/CVE-2014-6515/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6517 page", "url": "https://www.suse.com/security/cve/CVE-2014-6517/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6519 page", "url": "https://www.suse.com/security/cve/CVE-2014-6519/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6527 page", "url": "https://www.suse.com/security/cve/CVE-2014-6527/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6531 page", "url": "https://www.suse.com/security/cve/CVE-2014-6531/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6532 page", "url": "https://www.suse.com/security/cve/CVE-2014-6532/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6549 page", "url": "https://www.suse.com/security/cve/CVE-2014-6549/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6558 page", "url": "https://www.suse.com/security/cve/CVE-2014-6558/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6562 page", "url": "https://www.suse.com/security/cve/CVE-2014-6562/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6585 page", "url": "https://www.suse.com/security/cve/CVE-2014-6585/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6587 page", "url": "https://www.suse.com/security/cve/CVE-2014-6587/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6591 page", "url": "https://www.suse.com/security/cve/CVE-2014-6591/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6593 page", "url": "https://www.suse.com/security/cve/CVE-2014-6593/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6601 page", "url": "https://www.suse.com/security/cve/CVE-2014-6601/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0383 page", "url": "https://www.suse.com/security/cve/CVE-2015-0383/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0395 page", "url": "https://www.suse.com/security/cve/CVE-2015-0395/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0400 page", "url": "https://www.suse.com/security/cve/CVE-2015-0400/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0403 page", "url": "https://www.suse.com/security/cve/CVE-2015-0403/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0406 page", "url": "https://www.suse.com/security/cve/CVE-2015-0406/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0407 page", "url": "https://www.suse.com/security/cve/CVE-2015-0407/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0408 page", "url": "https://www.suse.com/security/cve/CVE-2015-0408/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0410 page", "url": "https://www.suse.com/security/cve/CVE-2015-0410/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0412 page", "url": "https://www.suse.com/security/cve/CVE-2015-0412/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0413 page", "url": "https://www.suse.com/security/cve/CVE-2015-0413/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0421 page", "url": "https://www.suse.com/security/cve/CVE-2015-0421/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0437 page", "url": "https://www.suse.com/security/cve/CVE-2015-0437/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0458 page", "url": "https://www.suse.com/security/cve/CVE-2015-0458/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0459 page", "url": "https://www.suse.com/security/cve/CVE-2015-0459/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0460 page", "url": "https://www.suse.com/security/cve/CVE-2015-0460/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0469 page", "url": "https://www.suse.com/security/cve/CVE-2015-0469/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0477 page", "url": "https://www.suse.com/security/cve/CVE-2015-0477/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0478 page", "url": "https://www.suse.com/security/cve/CVE-2015-0478/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0480 page", "url": "https://www.suse.com/security/cve/CVE-2015-0480/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0484 page", "url": "https://www.suse.com/security/cve/CVE-2015-0484/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0488 page", "url": "https://www.suse.com/security/cve/CVE-2015-0488/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0491 page", "url": "https://www.suse.com/security/cve/CVE-2015-0491/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0492 page", "url": "https://www.suse.com/security/cve/CVE-2015-0492/" } ], "title": "Security update for Java OpenJDK", "tracking": { "current_release_date": "2014-10-24T14:17:30Z", "generator": { "date": "2014-10-24T14:17:30Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2015:0833-1", "initial_release_date": "2014-10-24T14:17:30Z", "revision_history": [ { "date": "2014-10-24T14:17:30Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "product": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "product_id": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "product": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "product_id": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "product": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "product_id": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "product": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "product_id": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "product": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "product_id": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64", "product": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64", "product_id": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Desktop 11 SP3", "product": { "name": "SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:suse_sled:11:sp3" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586" }, "product_reference": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-1500", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-1500" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-1500", "url": "https://www.suse.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-1500", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-1500", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-1500", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-1500", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-1500" }, { "cve": "CVE-2013-1571", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-1571" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-1571", "url": "https://www.suse.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "SUSE Bug 824397 for CVE-2013-1571", "url": "https://bugzilla.suse.com/824397" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-1571", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-1571", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-1571", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-1571", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-1571" }, { "cve": "CVE-2013-2407", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2407" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2407", "url": "https://www.suse.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2407", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2407", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2407", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2407", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2407" }, { "cve": "CVE-2013-2412", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2412" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2412", "url": "https://www.suse.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2412", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2412", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2412", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2412", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2412" }, { "cve": "CVE-2013-2443", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2443" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2443", "url": "https://www.suse.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2443", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2443", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2443", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2443", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2443" }, { "cve": "CVE-2013-2444", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2444" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2444", "url": "https://www.suse.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2444", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2444", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2444", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2444", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2444" }, { "cve": "CVE-2013-2445", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2445" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2445", "url": "https://www.suse.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2445", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2445", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2445", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2445" }, { "cve": "CVE-2013-2446", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2446" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2446", "url": "https://www.suse.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2446", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2446", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2446", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2446", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2446" }, { "cve": "CVE-2013-2447", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2447" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2447", "url": "https://www.suse.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2447", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2447", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2447", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2447", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2447" }, { "cve": "CVE-2013-2448", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2448" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2448", "url": "https://www.suse.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2448", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2448", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2448", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2448", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2448" }, { "cve": "CVE-2013-2449", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2449" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2449", "url": "https://www.suse.com/security/cve/CVE-2013-2449" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2449", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2449", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2449", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2449" }, { "cve": "CVE-2013-2450", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2450" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2450", "url": "https://www.suse.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2450", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2450", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2450", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2450", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2450" }, { "cve": "CVE-2013-2451", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2451" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2451", "url": "https://www.suse.com/security/cve/CVE-2013-2451" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2451", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2451", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2451", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2451", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2013-2451" }, { "cve": "CVE-2013-2452", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2452" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2452", "url": "https://www.suse.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2452", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2452", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2452", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2452", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2452" }, { "cve": "CVE-2013-2453", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2453" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2453", "url": "https://www.suse.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2453", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2453", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2453", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2453", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2453" }, { "cve": "CVE-2013-2454", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2454" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2454", "url": "https://www.suse.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2454", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2454", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2454", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2454" }, { "cve": "CVE-2013-2455", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2455" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2455", "url": "https://www.suse.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2455", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2455", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2455", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2455", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2455" }, { "cve": "CVE-2013-2456", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2456" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2456", "url": "https://www.suse.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2456", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2456", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2456", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2456", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2456" }, { "cve": "CVE-2013-2457", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2457" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2457", "url": "https://www.suse.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2457", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2457", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2457", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2457", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2457" }, { "cve": "CVE-2013-2458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via \"an error related to method handles.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2458", "url": "https://www.suse.com/security/cve/CVE-2013-2458" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2458", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2458", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2458", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2458" }, { "cve": "CVE-2013-2459", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2459" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2459", "url": "https://www.suse.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2459", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2459", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2459", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2459", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2459" }, { "cve": "CVE-2013-2460", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2460" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"insufficient access checks\" in the tracing component.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2460", "url": "https://www.suse.com/security/cve/CVE-2013-2460" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2460", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2460", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2460", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2460" }, { "cve": "CVE-2013-2461", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2461" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2461", "url": "https://www.suse.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2461", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2461", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2461", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2461" }, { "cve": "CVE-2013-2463", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2463" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2463", "url": "https://www.suse.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2463", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2463", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2463", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2463", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2463" }, { "cve": "CVE-2013-2465", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2465" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2465", "url": "https://www.suse.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2465", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2465", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2465", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2465", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2465" }, { "cve": "CVE-2013-2469", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2469" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2469", "url": "https://www.suse.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2469", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2469", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2469", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2469", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2469" }, { "cve": "CVE-2013-2470", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2470" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2470", "url": "https://www.suse.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2470", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2470", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2470", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2470", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2470" }, { "cve": "CVE-2013-2471", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2471" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2471", "url": "https://www.suse.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2471", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2471", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2471", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2471", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2471" }, { "cve": "CVE-2013-2472", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2472" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2472", "url": "https://www.suse.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2472", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2472", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2472", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2472", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2472" }, { "cve": "CVE-2013-2473", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2473" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2473", "url": "https://www.suse.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2473", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2473", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2473", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2473", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2473" }, { "cve": "CVE-2013-3829", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-3829" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE, Java SE Embedded component in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-3829", "url": "https://www.suse.com/security/cve/CVE-2013-3829" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-3829", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-3829", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-3829", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-3829", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-3829" }, { "cve": "CVE-2013-4002", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-4002" } ], "notes": [ { "category": "general", "text": "XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, Java SE Embedded 7u40 and earlier, and possibly other products allows remote attackers to cause a denial of service via vectors related to XML attribute names.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-4002", "url": "https://www.suse.com/security/cve/CVE-2013-4002" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-4002", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-4002", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-4002", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-4002", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-4002", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-4002" }, { "cve": "CVE-2013-5772", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5772" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u40 and earlier and Java SE 6u60 and earlier allows remote attackers to affect integrity via unknown vectors related to jhat.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5772", "url": "https://www.suse.com/security/cve/CVE-2013-5772" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5772", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5772", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5772", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5772", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2013-5772" }, { "cve": "CVE-2013-5774", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5774" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5774", "url": "https://www.suse.com/security/cve/CVE-2013-5774" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5774", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5774", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5774", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5774", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5774" }, { "cve": "CVE-2013-5778", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5778" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5778", "url": "https://www.suse.com/security/cve/CVE-2013-5778" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5778", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5778", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5778", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5778", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5778" }, { "cve": "CVE-2013-5780", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5780" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5780", "url": "https://www.suse.com/security/cve/CVE-2013-5780" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5780", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5780", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5780", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5780", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5780" }, { "cve": "CVE-2013-5782", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5782" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5782", "url": "https://www.suse.com/security/cve/CVE-2013-5782" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5782", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5782", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5782", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5782", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5782" }, { "cve": "CVE-2013-5783", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5783" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Swing.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5783", "url": "https://www.suse.com/security/cve/CVE-2013-5783" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5783", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5783", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5783", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5783", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5783" }, { "cve": "CVE-2013-5784", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5784" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to SCRIPTING.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5784", "url": "https://www.suse.com/security/cve/CVE-2013-5784" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5784", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5784", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5784", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5784", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5784" }, { "cve": "CVE-2013-5790", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5790" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to BEANS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5790", "url": "https://www.suse.com/security/cve/CVE-2013-5790" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5790", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5790", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5790", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5790", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5790" }, { "cve": "CVE-2013-5797", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5797" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and JavaFX 2.2.40 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5797", "url": "https://www.suse.com/security/cve/CVE-2013-5797" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5797", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5797", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5797", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5797", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2013-5797" }, { "cve": "CVE-2013-5800", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5800" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JGSS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5800", "url": "https://www.suse.com/security/cve/CVE-2013-5800" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5800", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5800", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5800", "url": "https://bugzilla.suse.com/849212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5800" }, { "cve": "CVE-2013-5802", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5802" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5802", "url": "https://www.suse.com/security/cve/CVE-2013-5802" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5802", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5802", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5802", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5802", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5802" }, { "cve": "CVE-2013-5803", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5803" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JGSS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5803", "url": "https://www.suse.com/security/cve/CVE-2013-5803" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5803", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5803", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5803", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5803", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-5803" }, { "cve": "CVE-2013-5804", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5804" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, and JRockit R27.7.6 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5804", "url": "https://www.suse.com/security/cve/CVE-2013-5804" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5804", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5804", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5804", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5804", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5804" }, { "cve": "CVE-2013-5805", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5805" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing, a different vulnerability than CVE-2013-5806.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5805", "url": "https://www.suse.com/security/cve/CVE-2013-5805" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5805", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5805", "url": "https://bugzilla.suse.com/846999" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5805" }, { "cve": "CVE-2013-5806", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5806" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing, a different vulnerability than CVE-2013-5805.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5806", "url": "https://www.suse.com/security/cve/CVE-2013-5806" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5806", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5806", "url": "https://bugzilla.suse.com/846999" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5806" }, { "cve": "CVE-2013-5809", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5809" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5829.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5809", "url": "https://www.suse.com/security/cve/CVE-2013-5809" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5809", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5809", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5809", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5809", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5809" }, { "cve": "CVE-2013-5814", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5814" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5814", "url": "https://www.suse.com/security/cve/CVE-2013-5814" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5814", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5814", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5814", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5814", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5814" }, { "cve": "CVE-2013-5817", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5817" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5817", "url": "https://www.suse.com/security/cve/CVE-2013-5817" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5817", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5817", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5817", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5817", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5817" }, { "cve": "CVE-2013-5820", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5820" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to JAX-WS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5820", "url": "https://www.suse.com/security/cve/CVE-2013-5820" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5820", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5820", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5820", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5820", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5820" }, { "cve": "CVE-2013-5823", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5823" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5823", "url": "https://www.suse.com/security/cve/CVE-2013-5823" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5823", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5823", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5823", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5823", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5823" }, { "cve": "CVE-2013-5825", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5825" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5825", "url": "https://www.suse.com/security/cve/CVE-2013-5825" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5825", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5825", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5825", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5825", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5825" }, { "cve": "CVE-2013-5829", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5829" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5809.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5829", "url": "https://www.suse.com/security/cve/CVE-2013-5829" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5829", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5829", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5829", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5829", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5829" }, { "cve": "CVE-2013-5830", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5830" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5830", "url": "https://www.suse.com/security/cve/CVE-2013-5830" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5830", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5830", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5830", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5830", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5830" }, { "cve": "CVE-2013-5840", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5840" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5840", "url": "https://www.suse.com/security/cve/CVE-2013-5840" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5840", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5840", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5840", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5840", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5840" }, { "cve": "CVE-2013-5842", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5842" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5850.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5842", "url": "https://www.suse.com/security/cve/CVE-2013-5842" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5842", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5842", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5842", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5842", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5842" }, { "cve": "CVE-2013-5849", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5849" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to AWT.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5849", "url": "https://www.suse.com/security/cve/CVE-2013-5849" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5849", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5849", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5849", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5849", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5849" }, { "cve": "CVE-2013-5850", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5850" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5842.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5850", "url": "https://www.suse.com/security/cve/CVE-2013-5850" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5850", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5850", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5850", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5850", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5850" }, { "cve": "CVE-2013-5851", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5851" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5851", "url": "https://www.suse.com/security/cve/CVE-2013-5851" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5851", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5851", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5851", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5851", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5851" }, { "cve": "CVE-2013-5878", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5878" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the Security component does not properly handle null XML namespace (xmlns) attributes during XML document canonicalization, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5878", "url": "https://www.suse.com/security/cve/CVE-2013-5878" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5878", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5878", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-5878" }, { "cve": "CVE-2013-5884", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5884" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to an incorrect check for code permissions by CORBA stub factories.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5884", "url": "https://www.suse.com/security/cve/CVE-2013-5884" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5884", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5884", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5884" }, { "cve": "CVE-2013-5893", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5893" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u45 and Java SE Embedded 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to improper handling of methods in MethodHandles in HotSpot JVM, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5893", "url": "https://www.suse.com/security/cve/CVE-2013-5893" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5893", "url": "https://bugzilla.suse.com/858818" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5893" }, { "cve": "CVE-2013-5896", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5896" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that com.sun.corba.se and its sub-packages are not included on the restricted package list.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5896", "url": "https://www.suse.com/security/cve/CVE-2013-5896" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5896", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5896", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5896" }, { "cve": "CVE-2013-5907", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5907" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is due to incorrect input validation in LookupProcessor.cpp in the ICU Layout Engine, which allows attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted font file.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5907", "url": "https://www.suse.com/security/cve/CVE-2013-5907" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5907", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5907", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5907" }, { "cve": "CVE-2013-5910", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5910" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that CanonicalizerBase.java in the XML canonicalizer allows untrusted code to access mutable byte arrays.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5910", "url": "https://www.suse.com/security/cve/CVE-2013-5910" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5910", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5910", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5910" }, { "cve": "CVE-2013-6629", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-6629" } ], "notes": [ { "category": "general", "text": "The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-6629", "url": "https://www.suse.com/security/cve/CVE-2013-6629" }, { "category": "external", "summary": "SUSE Bug 850430 for CVE-2013-6629", "url": "https://bugzilla.suse.com/850430" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2013-6629", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2013-6629", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2013-6629", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2013-6629", "url": "https://bugzilla.suse.com/877430" }, { "category": "external", "summary": "SUSE Bug 880246 for CVE-2013-6629", "url": "https://bugzilla.suse.com/880246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-6629" }, { "cve": "CVE-2013-6954", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-6954" } ], "notes": [ { "category": "general", "text": "The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-6954", "url": "https://www.suse.com/security/cve/CVE-2013-6954" }, { "category": "external", "summary": "SUSE Bug 856522 for CVE-2013-6954", "url": "https://bugzilla.suse.com/856522" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2013-6954", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2013-6954", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2013-6954", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2013-6954", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-6954" }, { "cve": "CVE-2014-0368", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0368" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and Java SE Embedded 7u45, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to incorrect permission checks when listening on a socket, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0368", "url": "https://www.suse.com/security/cve/CVE-2014-0368" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0368", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0368", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0368" }, { "cve": "CVE-2014-0373", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0373" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to throwing of an incorrect exception when SnmpStatusException should have been used in the SNMP implementation, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0373", "url": "https://www.suse.com/security/cve/CVE-2014-0373" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0373", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0373", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2014-0373" }, { "cve": "CVE-2014-0376", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0376" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect integrity via vectors related to JAXP. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to an improper check for \"code permissions when creating document builder factories.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0376", "url": "https://www.suse.com/security/cve/CVE-2014-0376" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0376", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0376", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0376" }, { "cve": "CVE-2014-0411", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0411" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information about encryption keys via a timing discrepancy during the TLS/SSL handshake.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0411", "url": "https://www.suse.com/security/cve/CVE-2014-0411" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0411", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0411", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2014-0411" }, { "cve": "CVE-2014-0416", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0416" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect integrity via vectors related to JAAS. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to how principals are set for the Subject class, which allows attackers to escape the sandbox using deserialization of a crafted Subject instance.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0416", "url": "https://www.suse.com/security/cve/CVE-2014-0416" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0416", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0416", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0416" }, { "cve": "CVE-2014-0422", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0422" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to missing package access checks in the Naming / JNDI component, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0422", "url": "https://www.suse.com/security/cve/CVE-2014-0422" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0422", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0422", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0422" }, { "cve": "CVE-2014-0423", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0423" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote authenticated users to affect confidentiality and availability via unknown vectors related to Beans. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue is an XML External Entity (XXE) vulnerability in DocumentHandler.java, related to Beans decoding.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0423", "url": "https://www.suse.com/security/cve/CVE-2014-0423" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0423", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0423", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0423" }, { "cve": "CVE-2014-0428", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0428" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to \"insufficient security checks in IIOP streams,\" which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0428", "url": "https://www.suse.com/security/cve/CVE-2014-0428" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0428", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0428", "url": "https://bugzilla.suse.com/862064" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0428", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0428", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0428" }, { "cve": "CVE-2014-0429", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0429" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0429", "url": "https://www.suse.com/security/cve/CVE-2014-0429" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0429", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0429", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0429", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0429", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0429" }, { "cve": "CVE-2014-0446", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0446" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0446", "url": "https://www.suse.com/security/cve/CVE-2014-0446" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0446", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0446", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0446", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0446", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0446" }, { "cve": "CVE-2014-0451", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0451" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-2412.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0451", "url": "https://www.suse.com/security/cve/CVE-2014-0451" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0451", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0451", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0451", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0451", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0451" }, { "cve": "CVE-2014-0452", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0452" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0458 and CVE-2014-2423.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0452", "url": "https://www.suse.com/security/cve/CVE-2014-0452" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0452", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0452", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0452", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0452", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0452" }, { "cve": "CVE-2014-0453", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0453" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0453", "url": "https://www.suse.com/security/cve/CVE-2014-0453" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0453", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0453", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0453", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0453", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0453" }, { "cve": "CVE-2014-0454", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0454" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0454", "url": "https://www.suse.com/security/cve/CVE-2014-0454" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0454", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0454", "url": "https://bugzilla.suse.com/877429" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0454" }, { "cve": "CVE-2014-0455", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0455" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0455", "url": "https://www.suse.com/security/cve/CVE-2014-0455" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0455", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0455", "url": "https://bugzilla.suse.com/877429" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0455" }, { "cve": "CVE-2014-0456", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0456" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0456", "url": "https://www.suse.com/security/cve/CVE-2014-0456" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0456", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0456", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0456" }, { "cve": "CVE-2014-0457", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0457" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0457", "url": "https://www.suse.com/security/cve/CVE-2014-0457" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0457", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0457", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0457", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0457", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0457" }, { "cve": "CVE-2014-0458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0458", "url": "https://www.suse.com/security/cve/CVE-2014-0458" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0458", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0458", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0458", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0458", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0458" }, { "cve": "CVE-2014-0459", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0459" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0459", "url": "https://www.suse.com/security/cve/CVE-2014-0459" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0459", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0459", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0459", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0459", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0459" }, { "cve": "CVE-2014-0460", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0460" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via vectors related to JNDI.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0460", "url": "https://www.suse.com/security/cve/CVE-2014-0460" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0460", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0460", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0460", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0460", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0460" }, { "cve": "CVE-2014-0461", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0461" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0461", "url": "https://www.suse.com/security/cve/CVE-2014-0461" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0461", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0461", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0461", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0461", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0461" }, { "cve": "CVE-2014-1876", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-1876" } ], "notes": [ { "category": "general", "text": "The unpacker::redirect_stdio function in unpack.cpp in unpack200 in OpenJDK 6, 7, and 8; Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 does not securely create temporary files when a log file cannot be opened, which allows local users to overwrite arbitrary files via a symlink attack on /tmp/unpack.log.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-1876", "url": "https://www.suse.com/security/cve/CVE-2014-1876" }, { "category": "external", "summary": "SUSE Bug 863305 for CVE-2014-1876", "url": "https://bugzilla.suse.com/863305" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-1876", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-1876", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-1876", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-1876", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-1876" }, { "cve": "CVE-2014-2397", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2397" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2397", "url": "https://www.suse.com/security/cve/CVE-2014-2397" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2397", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2397", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2397" }, { "cve": "CVE-2014-2398", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2398" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and JRockit R27.8.1 and R28.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2398", "url": "https://www.suse.com/security/cve/CVE-2014-2398" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2398", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2398", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2398", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2398", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2014-2398" }, { "cve": "CVE-2014-2402", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2402" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-0455.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2402", "url": "https://www.suse.com/security/cve/CVE-2014-2402" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2402", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2402", "url": "https://bugzilla.suse.com/877429" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2402" }, { "cve": "CVE-2014-2403", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2403" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2403", "url": "https://www.suse.com/security/cve/CVE-2014-2403" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2403", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2403", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2403" }, { "cve": "CVE-2014-2412", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2412" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, SE 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-0451.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2412", "url": "https://www.suse.com/security/cve/CVE-2014-2412" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2412", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2412", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2412", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2412", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2412" }, { "cve": "CVE-2014-2413", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2413" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2413", "url": "https://www.suse.com/security/cve/CVE-2014-2413" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2413", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2413" }, { "cve": "CVE-2014-2414", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2414" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXB.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2414", "url": "https://www.suse.com/security/cve/CVE-2014-2414" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2414", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2414", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2414", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2414", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2414" }, { "cve": "CVE-2014-2421", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2421" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2421", "url": "https://www.suse.com/security/cve/CVE-2014-2421" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2421", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2421", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2421", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2421", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2421" }, { "cve": "CVE-2014-2423", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2423" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-0458.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2423", "url": "https://www.suse.com/security/cve/CVE-2014-2423" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2423", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2423", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2423", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2423", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2423" }, { "cve": "CVE-2014-2427", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2427" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2427", "url": "https://www.suse.com/security/cve/CVE-2014-2427" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2427", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2427", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2427", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2427", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2427" }, { "cve": "CVE-2014-2483", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2483" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u60 and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-4223. NOTE: the previous information is from the July 2014 CPU. Oracle has not commented on another vendor\u0027s claim that the issue is related to improper restriction of the \"use of privileged annotations.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2483", "url": "https://www.suse.com/security/cve/CVE-2014-2483" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-2483", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2483" }, { "cve": "CVE-2014-2490", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2490" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2490", "url": "https://www.suse.com/security/cve/CVE-2014-2490" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-2490", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2490" }, { "cve": "CVE-2014-3566", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-3566" } ], "notes": [ { "category": "general", "text": "The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the \"POODLE\" issue.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-3566", "url": "https://www.suse.com/security/cve/CVE-2014-3566" }, { "category": "external", "summary": "SUSE Bug 1011293 for CVE-2014-3566", "url": "https://bugzilla.suse.com/1011293" }, { "category": "external", "summary": "SUSE Bug 1031023 for CVE-2014-3566", "url": "https://bugzilla.suse.com/1031023" }, { "category": "external", "summary": "SUSE Bug 901223 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901223" }, { "category": "external", "summary": "SUSE Bug 901254 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901254" }, { "category": "external", "summary": "SUSE Bug 901277 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901277" }, { "category": "external", "summary": "SUSE Bug 901748 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901748" }, { "category": "external", "summary": "SUSE Bug 901757 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901757" }, { "category": "external", "summary": "SUSE Bug 901759 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901759" }, { "category": "external", "summary": "SUSE Bug 901889 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901889" }, { "category": "external", "summary": "SUSE Bug 901968 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901968" }, { "category": "external", "summary": "SUSE Bug 902229 for CVE-2014-3566", "url": "https://bugzilla.suse.com/902229" }, { "category": "external", "summary": "SUSE Bug 902233 for CVE-2014-3566", "url": "https://bugzilla.suse.com/902233" }, { "category": "external", "summary": "SUSE Bug 902476 for CVE-2014-3566", "url": "https://bugzilla.suse.com/902476" }, { "category": "external", "summary": "SUSE Bug 903405 for CVE-2014-3566", "url": "https://bugzilla.suse.com/903405" }, { "category": "external", "summary": "SUSE Bug 903684 for CVE-2014-3566", "url": "https://bugzilla.suse.com/903684" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-3566", "url": "https://bugzilla.suse.com/904889" }, { "category": "external", "summary": "SUSE Bug 905106 for CVE-2014-3566", "url": "https://bugzilla.suse.com/905106" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-3566", "url": "https://bugzilla.suse.com/914041" }, { "category": "external", "summary": "SUSE Bug 994144 for CVE-2014-3566", "url": "https://bugzilla.suse.com/994144" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 3.4, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-3566" }, { "cve": "CVE-2014-4208", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4208" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4220.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4208", "url": "https://www.suse.com/security/cve/CVE-2014-4208" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4208", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4208", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4208" }, { "cve": "CVE-2014-4209", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4209" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality and integrity via vectors related to JMX.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4209", "url": "https://www.suse.com/security/cve/CVE-2014-4209" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4209", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4209", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4209", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4209", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4209" }, { "cve": "CVE-2014-4216", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4216" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4216", "url": "https://www.suse.com/security/cve/CVE-2014-4216" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4216", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4216" }, { "cve": "CVE-2014-4218", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4218" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4218", "url": "https://www.suse.com/security/cve/CVE-2014-4218" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4218", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4218", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4218", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4218", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4218" }, { "cve": "CVE-2014-4219", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4219" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4219", "url": "https://www.suse.com/security/cve/CVE-2014-4219" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4219", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4219", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4219", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4219", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4219" }, { "cve": "CVE-2014-4220", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4220" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4208.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4220", "url": "https://www.suse.com/security/cve/CVE-2014-4220" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4220", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4220", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4220" }, { "cve": "CVE-2014-4221", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4221" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4221", "url": "https://www.suse.com/security/cve/CVE-2014-4221" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4221", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4221", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4221" }, { "cve": "CVE-2014-4223", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4223" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-2483.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4223", "url": "https://www.suse.com/security/cve/CVE-2014-4223" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4223", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4223" }, { "cve": "CVE-2014-4227", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4227" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4227", "url": "https://www.suse.com/security/cve/CVE-2014-4227" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4227", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4227", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4227", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4227" }, { "cve": "CVE-2014-4244", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4244" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and JRockit R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4244", "url": "https://www.suse.com/security/cve/CVE-2014-4244" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4244", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4244", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4244", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4244", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4244" }, { "cve": "CVE-2014-4247", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4247" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4247", "url": "https://www.suse.com/security/cve/CVE-2014-4247" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4247", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4247" }, { "cve": "CVE-2014-4252", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4252" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4252", "url": "https://www.suse.com/security/cve/CVE-2014-4252" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4252", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4252", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4252", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4252", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4252" }, { "cve": "CVE-2014-4262", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4262" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4262", "url": "https://www.suse.com/security/cve/CVE-2014-4262" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4262", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4262", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4262", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4262", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4262" }, { "cve": "CVE-2014-4263", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4263" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to \"Diffie-Hellman key agreement.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4263", "url": "https://www.suse.com/security/cve/CVE-2014-4263" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4263", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4263", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4263", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4263", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4263" }, { "cve": "CVE-2014-4264", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4264" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4264", "url": "https://www.suse.com/security/cve/CVE-2014-4264" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4264", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4264" }, { "cve": "CVE-2014-4265", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4265" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4265", "url": "https://www.suse.com/security/cve/CVE-2014-4265" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4265", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4265", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4265", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4265" }, { "cve": "CVE-2014-4266", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4266" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Serviceability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4266", "url": "https://www.suse.com/security/cve/CVE-2014-4266" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4266", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4266", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4266" }, { "cve": "CVE-2014-4268", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4268" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Swing.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4268", "url": "https://www.suse.com/security/cve/CVE-2014-4268" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4268", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4268", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4268", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4268", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4268" }, { "cve": "CVE-2014-4288", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4288" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4288", "url": "https://www.suse.com/security/cve/CVE-2014-4288" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-4288", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-4288", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-4288", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-4288", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4288" }, { "cve": "CVE-2014-6456", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6456" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6456", "url": "https://www.suse.com/security/cve/CVE-2014-6456" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6456", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6456", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6456", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6456", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6456" }, { "cve": "CVE-2014-6457", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6457" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6457", "url": "https://www.suse.com/security/cve/CVE-2014-6457" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6457", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6457", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6457", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6457", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6457" }, { "cve": "CVE-2014-6458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6458", "url": "https://www.suse.com/security/cve/CVE-2014-6458" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6458", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6458", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6458", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6458", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6458" }, { "cve": "CVE-2014-6466", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6466" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Internet Explorer, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6466", "url": "https://www.suse.com/security/cve/CVE-2014-6466" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6466", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6466", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6466", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6466", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6466" }, { "cve": "CVE-2014-6468", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6468" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6468", "url": "https://www.suse.com/security/cve/CVE-2014-6468" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6468", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6468", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6468", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6468" }, { "cve": "CVE-2014-6476", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6476" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6527.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6476", "url": "https://www.suse.com/security/cve/CVE-2014-6476" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6476", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6476", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6476", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6476", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6476" }, { "cve": "CVE-2014-6485", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6485" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u20 and JavaFX 2.2.65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6485", "url": "https://www.suse.com/security/cve/CVE-2014-6485" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6485", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6485", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6485", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6485" }, { "cve": "CVE-2014-6492", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6492" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Firefox, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6492", "url": "https://www.suse.com/security/cve/CVE-2014-6492" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6492", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6492", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6492", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6492", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6492" }, { "cve": "CVE-2014-6493", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6493" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6503, and CVE-2014-6532.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6493", "url": "https://www.suse.com/security/cve/CVE-2014-6493" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6493", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6493", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6493", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6493", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6493" }, { "cve": "CVE-2014-6502", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6502" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6502", "url": "https://www.suse.com/security/cve/CVE-2014-6502" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6502", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6502", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6502", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6502", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6502" }, { "cve": "CVE-2014-6503", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6503" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6532.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6503", "url": "https://www.suse.com/security/cve/CVE-2014-6503" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6503", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6503", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6503", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6503", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6503" }, { "cve": "CVE-2014-6504", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6504" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, and 7u67, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6504", "url": "https://www.suse.com/security/cve/CVE-2014-6504" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6504", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6504", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6504", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6504" }, { "cve": "CVE-2014-6506", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6506" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6506", "url": "https://www.suse.com/security/cve/CVE-2014-6506" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6506", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6506", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6506", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6506", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6506" }, { "cve": "CVE-2014-6511", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6511" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6511", "url": "https://www.suse.com/security/cve/CVE-2014-6511" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6511", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6511", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6511", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6511", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6511" }, { "cve": "CVE-2014-6512", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6512" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6512", "url": "https://www.suse.com/security/cve/CVE-2014-6512" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6512", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6512", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6512", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6512", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6512" }, { "cve": "CVE-2014-6513", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6513" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6513", "url": "https://www.suse.com/security/cve/CVE-2014-6513" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6513", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6513", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6513", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6513", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6513" }, { "cve": "CVE-2014-6515", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6515" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6515", "url": "https://www.suse.com/security/cve/CVE-2014-6515" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6515", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6515", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6515", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6515", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6515" }, { "cve": "CVE-2014-6517", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6517" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and Jrockit R27.8.3 and R28.3.3 allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6517", "url": "https://www.suse.com/security/cve/CVE-2014-6517" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6517", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6517", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6517", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6517" }, { "cve": "CVE-2014-6519", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6519" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6519", "url": "https://www.suse.com/security/cve/CVE-2014-6519" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6519", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6519", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6519", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6519" }, { "cve": "CVE-2014-6527", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6527" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6476.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6527", "url": "https://www.suse.com/security/cve/CVE-2014-6527" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6527", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6527", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6527", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6527", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6527" }, { "cve": "CVE-2014-6531", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6531" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6531", "url": "https://www.suse.com/security/cve/CVE-2014-6531" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6531", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6531", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6531", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6531", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6531" }, { "cve": "CVE-2014-6532", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6532" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6503.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6532", "url": "https://www.suse.com/security/cve/CVE-2014-6532" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6532", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6532", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6532", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6532", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6532" }, { "cve": "CVE-2014-6549", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6549" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6549", "url": "https://www.suse.com/security/cve/CVE-2014-6549" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6549", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6549" }, { "cve": "CVE-2014-6558", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6558" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6558", "url": "https://www.suse.com/security/cve/CVE-2014-6558" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6558", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6558", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6558", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6558", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6558" }, { "cve": "CVE-2014-6562", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6562" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6562", "url": "https://www.suse.com/security/cve/CVE-2014-6562" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6562", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6562", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6562", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6562" }, { "cve": "CVE-2014-6585", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6585" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6585", "url": "https://www.suse.com/security/cve/CVE-2014-6585" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6585", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-6585" }, { "cve": "CVE-2014-6587", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6587" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6587", "url": "https://www.suse.com/security/cve/CVE-2014-6587" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6587", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6587" }, { "cve": "CVE-2014-6591", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6591" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6591", "url": "https://www.suse.com/security/cve/CVE-2014-6591" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6591", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6591" }, { "cve": "CVE-2014-6593", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6593" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit 27.8.4 and 28.3.4 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6593", "url": "https://www.suse.com/security/cve/CVE-2014-6593" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6593", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6593" }, { "cve": "CVE-2014-6601", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6601" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6601", "url": "https://www.suse.com/security/cve/CVE-2014-6601" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6601", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6601" }, { "cve": "CVE-2015-0383", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0383" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows local users to affect integrity and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0383", "url": "https://www.suse.com/security/cve/CVE-2015-0383" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0383", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0383" }, { "cve": "CVE-2015-0395", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0395" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0395", "url": "https://www.suse.com/security/cve/CVE-2015-0395" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0395", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0395" }, { "cve": "CVE-2015-0400", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0400" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0400", "url": "https://www.suse.com/security/cve/CVE-2015-0400" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0400", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0400" }, { "cve": "CVE-2015-0403", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0403" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0403", "url": "https://www.suse.com/security/cve/CVE-2015-0403" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0403", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0403" }, { "cve": "CVE-2015-0406", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0406" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0406", "url": "https://www.suse.com/security/cve/CVE-2015-0406" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0406", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0406" }, { "cve": "CVE-2015-0407", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0407" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Swing.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0407", "url": "https://www.suse.com/security/cve/CVE-2015-0407" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0407", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0407" }, { "cve": "CVE-2015-0408", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0408" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0408", "url": "https://www.suse.com/security/cve/CVE-2015-0408" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0408", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0408" }, { "cve": "CVE-2015-0410", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0410" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0410", "url": "https://www.suse.com/security/cve/CVE-2015-0410" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0410", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0410" }, { "cve": "CVE-2015-0412", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0412" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0412", "url": "https://www.suse.com/security/cve/CVE-2015-0412" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0412", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0412" }, { "cve": "CVE-2015-0413", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0413" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u72 and 8u25 allows local users to affect integrity via unknown vectors related to Serviceability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0413", "url": "https://www.suse.com/security/cve/CVE-2015-0413" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0413", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0413" }, { "cve": "CVE-2015-0421", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0421" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0421", "url": "https://www.suse.com/security/cve/CVE-2015-0421" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0421", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0421" }, { "cve": "CVE-2015-0437", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0437" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0437", "url": "https://www.suse.com/security/cve/CVE-2015-0437" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0437", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0437" }, { "cve": "CVE-2015-0458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0458", "url": "https://www.suse.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0458", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2015-0458" }, { "cve": "CVE-2015-0459", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0459" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0459", "url": "https://www.suse.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0459", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0459", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0459" }, { "cve": "CVE-2015-0460", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0460" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0460", "url": "https://www.suse.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0460", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0460" }, { "cve": "CVE-2015-0469", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0469" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0469", "url": "https://www.suse.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0469", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0469", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0469" }, { "cve": "CVE-2015-0477", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0477" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity via unknown vectors related to Beans.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0477", "url": "https://www.suse.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0477", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0477" }, { "cve": "CVE-2015-0478", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0478" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0478", "url": "https://www.suse.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0478", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 944456 for CVE-2015-0478", "url": "https://bugzilla.suse.com/944456" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0478" }, { "cve": "CVE-2015-0480", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0480" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0480", "url": "https://www.suse.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0480", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0480" }, { "cve": "CVE-2015-0484", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0484" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0484", "url": "https://www.suse.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0484", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0484" }, { "cve": "CVE-2015-0488", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0488" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0488", "url": "https://www.suse.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0488", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0488" }, { "cve": "CVE-2015-0491", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0491" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0491", "url": "https://www.suse.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0491", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0491", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0491" }, { "cve": "CVE-2015-0492", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0492" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0492", "url": "https://www.suse.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0492", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0492" } ] }
suse-su-2015:0336-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for Java OpenJDK", "title": "Title of the patch" }, { "category": "description", "text": "\nOracle Critical Patch Update Advisory - October 2014\n\nDescription:\n\nA Critical Patch Update (CPU) is a collection of patches for multiple \nsecurity vulnerabilities.\n\nFind more information here: \nhttp://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html\n\u003chttp://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html\u003e\n\n", "title": "Description of the patch" }, { "category": "details", "text": "sledsp3-java-1_7_0-openjdk", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0336-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2015:0336-1", "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150336-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2015:0336-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2015-February/001239.html" }, { "category": "self", "summary": "SUSE Bug 828665", "url": "https://bugzilla.suse.com/828665" }, { "category": "self", "summary": "SUSE Bug 846999", "url": "https://bugzilla.suse.com/846999" }, { "category": "self", "summary": "SUSE Bug 858818", "url": "https://bugzilla.suse.com/858818" }, { "category": "self", "summary": "SUSE Bug 873873", "url": "https://bugzilla.suse.com/873873" }, { "category": "self", "summary": "SUSE Bug 887530", "url": "https://bugzilla.suse.com/887530" }, { "category": "self", "summary": "SUSE Bug 901242", "url": "https://bugzilla.suse.com/901242" }, { "category": "self", "summary": "SUSE Bug 914041", "url": "https://bugzilla.suse.com/914041" }, { "category": "self", "summary": "SUSE Bug 927591", "url": "https://bugzilla.suse.com/927591" }, { "category": "self", "summary": "SUSE CVE CVE-2013-1500 page", "url": "https://www.suse.com/security/cve/CVE-2013-1500/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-1571 page", "url": "https://www.suse.com/security/cve/CVE-2013-1571/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2407 page", "url": "https://www.suse.com/security/cve/CVE-2013-2407/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2412 page", "url": "https://www.suse.com/security/cve/CVE-2013-2412/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2443 page", "url": "https://www.suse.com/security/cve/CVE-2013-2443/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2444 page", "url": "https://www.suse.com/security/cve/CVE-2013-2444/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2445 page", "url": "https://www.suse.com/security/cve/CVE-2013-2445/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2446 page", "url": "https://www.suse.com/security/cve/CVE-2013-2446/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2447 page", "url": "https://www.suse.com/security/cve/CVE-2013-2447/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2448 page", "url": "https://www.suse.com/security/cve/CVE-2013-2448/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2449 page", "url": "https://www.suse.com/security/cve/CVE-2013-2449/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2450 page", "url": "https://www.suse.com/security/cve/CVE-2013-2450/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2451 page", "url": "https://www.suse.com/security/cve/CVE-2013-2451/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2452 page", "url": "https://www.suse.com/security/cve/CVE-2013-2452/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2453 page", "url": "https://www.suse.com/security/cve/CVE-2013-2453/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2454 page", "url": "https://www.suse.com/security/cve/CVE-2013-2454/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2455 page", "url": "https://www.suse.com/security/cve/CVE-2013-2455/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2456 page", "url": "https://www.suse.com/security/cve/CVE-2013-2456/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2457 page", "url": "https://www.suse.com/security/cve/CVE-2013-2457/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2458 page", "url": "https://www.suse.com/security/cve/CVE-2013-2458/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2459 page", "url": "https://www.suse.com/security/cve/CVE-2013-2459/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2460 page", "url": "https://www.suse.com/security/cve/CVE-2013-2460/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2461 page", "url": "https://www.suse.com/security/cve/CVE-2013-2461/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2463 page", "url": "https://www.suse.com/security/cve/CVE-2013-2463/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2465 page", "url": "https://www.suse.com/security/cve/CVE-2013-2465/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2469 page", "url": "https://www.suse.com/security/cve/CVE-2013-2469/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2470 page", "url": "https://www.suse.com/security/cve/CVE-2013-2470/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2471 page", "url": "https://www.suse.com/security/cve/CVE-2013-2471/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2472 page", "url": "https://www.suse.com/security/cve/CVE-2013-2472/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-2473 page", "url": "https://www.suse.com/security/cve/CVE-2013-2473/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-3829 page", "url": "https://www.suse.com/security/cve/CVE-2013-3829/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-4002 page", "url": "https://www.suse.com/security/cve/CVE-2013-4002/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5772 page", "url": "https://www.suse.com/security/cve/CVE-2013-5772/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5774 page", "url": "https://www.suse.com/security/cve/CVE-2013-5774/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5778 page", "url": "https://www.suse.com/security/cve/CVE-2013-5778/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5780 page", "url": "https://www.suse.com/security/cve/CVE-2013-5780/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5782 page", "url": "https://www.suse.com/security/cve/CVE-2013-5782/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5783 page", "url": "https://www.suse.com/security/cve/CVE-2013-5783/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5784 page", "url": "https://www.suse.com/security/cve/CVE-2013-5784/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5790 page", "url": "https://www.suse.com/security/cve/CVE-2013-5790/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5797 page", "url": "https://www.suse.com/security/cve/CVE-2013-5797/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5800 page", "url": "https://www.suse.com/security/cve/CVE-2013-5800/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5802 page", "url": "https://www.suse.com/security/cve/CVE-2013-5802/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5803 page", "url": "https://www.suse.com/security/cve/CVE-2013-5803/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5804 page", "url": "https://www.suse.com/security/cve/CVE-2013-5804/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5805 page", "url": "https://www.suse.com/security/cve/CVE-2013-5805/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5806 page", "url": "https://www.suse.com/security/cve/CVE-2013-5806/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5809 page", "url": "https://www.suse.com/security/cve/CVE-2013-5809/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5814 page", "url": "https://www.suse.com/security/cve/CVE-2013-5814/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5817 page", "url": "https://www.suse.com/security/cve/CVE-2013-5817/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5820 page", "url": "https://www.suse.com/security/cve/CVE-2013-5820/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5823 page", "url": "https://www.suse.com/security/cve/CVE-2013-5823/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5825 page", "url": "https://www.suse.com/security/cve/CVE-2013-5825/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5829 page", "url": "https://www.suse.com/security/cve/CVE-2013-5829/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5830 page", "url": "https://www.suse.com/security/cve/CVE-2013-5830/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5840 page", "url": "https://www.suse.com/security/cve/CVE-2013-5840/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5842 page", "url": "https://www.suse.com/security/cve/CVE-2013-5842/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5849 page", "url": "https://www.suse.com/security/cve/CVE-2013-5849/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5850 page", "url": "https://www.suse.com/security/cve/CVE-2013-5850/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5851 page", "url": "https://www.suse.com/security/cve/CVE-2013-5851/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5878 page", "url": "https://www.suse.com/security/cve/CVE-2013-5878/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5884 page", "url": "https://www.suse.com/security/cve/CVE-2013-5884/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5893 page", "url": "https://www.suse.com/security/cve/CVE-2013-5893/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5896 page", "url": "https://www.suse.com/security/cve/CVE-2013-5896/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5907 page", "url": "https://www.suse.com/security/cve/CVE-2013-5907/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-5910 page", "url": "https://www.suse.com/security/cve/CVE-2013-5910/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-6629 page", "url": "https://www.suse.com/security/cve/CVE-2013-6629/" }, { "category": "self", "summary": "SUSE CVE CVE-2013-6954 page", "url": "https://www.suse.com/security/cve/CVE-2013-6954/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0368 page", "url": "https://www.suse.com/security/cve/CVE-2014-0368/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0373 page", "url": "https://www.suse.com/security/cve/CVE-2014-0373/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0376 page", "url": "https://www.suse.com/security/cve/CVE-2014-0376/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0411 page", "url": "https://www.suse.com/security/cve/CVE-2014-0411/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0416 page", "url": "https://www.suse.com/security/cve/CVE-2014-0416/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0422 page", "url": "https://www.suse.com/security/cve/CVE-2014-0422/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0423 page", "url": "https://www.suse.com/security/cve/CVE-2014-0423/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0428 page", "url": "https://www.suse.com/security/cve/CVE-2014-0428/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0429 page", "url": "https://www.suse.com/security/cve/CVE-2014-0429/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0446 page", "url": "https://www.suse.com/security/cve/CVE-2014-0446/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0451 page", "url": "https://www.suse.com/security/cve/CVE-2014-0451/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0452 page", "url": "https://www.suse.com/security/cve/CVE-2014-0452/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0453 page", "url": "https://www.suse.com/security/cve/CVE-2014-0453/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0454 page", "url": "https://www.suse.com/security/cve/CVE-2014-0454/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0455 page", "url": "https://www.suse.com/security/cve/CVE-2014-0455/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0456 page", "url": "https://www.suse.com/security/cve/CVE-2014-0456/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0457 page", "url": "https://www.suse.com/security/cve/CVE-2014-0457/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0458 page", "url": "https://www.suse.com/security/cve/CVE-2014-0458/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0459 page", "url": "https://www.suse.com/security/cve/CVE-2014-0459/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0460 page", "url": "https://www.suse.com/security/cve/CVE-2014-0460/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-0461 page", "url": "https://www.suse.com/security/cve/CVE-2014-0461/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-1876 page", "url": "https://www.suse.com/security/cve/CVE-2014-1876/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2397 page", "url": "https://www.suse.com/security/cve/CVE-2014-2397/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2398 page", "url": "https://www.suse.com/security/cve/CVE-2014-2398/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2402 page", "url": "https://www.suse.com/security/cve/CVE-2014-2402/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2403 page", "url": "https://www.suse.com/security/cve/CVE-2014-2403/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2412 page", "url": "https://www.suse.com/security/cve/CVE-2014-2412/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2413 page", "url": "https://www.suse.com/security/cve/CVE-2014-2413/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2414 page", "url": "https://www.suse.com/security/cve/CVE-2014-2414/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2421 page", "url": "https://www.suse.com/security/cve/CVE-2014-2421/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2423 page", "url": "https://www.suse.com/security/cve/CVE-2014-2423/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2427 page", "url": "https://www.suse.com/security/cve/CVE-2014-2427/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2483 page", "url": "https://www.suse.com/security/cve/CVE-2014-2483/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-2490 page", "url": "https://www.suse.com/security/cve/CVE-2014-2490/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-3566 page", "url": "https://www.suse.com/security/cve/CVE-2014-3566/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4208 page", "url": "https://www.suse.com/security/cve/CVE-2014-4208/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4209 page", "url": "https://www.suse.com/security/cve/CVE-2014-4209/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4216 page", "url": "https://www.suse.com/security/cve/CVE-2014-4216/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4218 page", "url": "https://www.suse.com/security/cve/CVE-2014-4218/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4219 page", "url": "https://www.suse.com/security/cve/CVE-2014-4219/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4220 page", "url": "https://www.suse.com/security/cve/CVE-2014-4220/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4221 page", "url": "https://www.suse.com/security/cve/CVE-2014-4221/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4223 page", "url": "https://www.suse.com/security/cve/CVE-2014-4223/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4227 page", "url": "https://www.suse.com/security/cve/CVE-2014-4227/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4244 page", "url": "https://www.suse.com/security/cve/CVE-2014-4244/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4247 page", "url": "https://www.suse.com/security/cve/CVE-2014-4247/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4252 page", "url": "https://www.suse.com/security/cve/CVE-2014-4252/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4262 page", "url": "https://www.suse.com/security/cve/CVE-2014-4262/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4263 page", "url": "https://www.suse.com/security/cve/CVE-2014-4263/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4264 page", "url": "https://www.suse.com/security/cve/CVE-2014-4264/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4265 page", "url": "https://www.suse.com/security/cve/CVE-2014-4265/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4266 page", "url": "https://www.suse.com/security/cve/CVE-2014-4266/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4268 page", "url": "https://www.suse.com/security/cve/CVE-2014-4268/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-4288 page", "url": "https://www.suse.com/security/cve/CVE-2014-4288/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6456 page", "url": "https://www.suse.com/security/cve/CVE-2014-6456/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6457 page", "url": "https://www.suse.com/security/cve/CVE-2014-6457/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6458 page", "url": "https://www.suse.com/security/cve/CVE-2014-6458/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6466 page", "url": "https://www.suse.com/security/cve/CVE-2014-6466/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6468 page", "url": "https://www.suse.com/security/cve/CVE-2014-6468/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6476 page", "url": "https://www.suse.com/security/cve/CVE-2014-6476/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6485 page", "url": "https://www.suse.com/security/cve/CVE-2014-6485/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6492 page", "url": "https://www.suse.com/security/cve/CVE-2014-6492/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6493 page", "url": "https://www.suse.com/security/cve/CVE-2014-6493/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6502 page", "url": "https://www.suse.com/security/cve/CVE-2014-6502/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6503 page", "url": "https://www.suse.com/security/cve/CVE-2014-6503/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6504 page", "url": "https://www.suse.com/security/cve/CVE-2014-6504/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6506 page", "url": "https://www.suse.com/security/cve/CVE-2014-6506/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6511 page", "url": "https://www.suse.com/security/cve/CVE-2014-6511/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6512 page", "url": "https://www.suse.com/security/cve/CVE-2014-6512/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6513 page", "url": "https://www.suse.com/security/cve/CVE-2014-6513/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6515 page", "url": "https://www.suse.com/security/cve/CVE-2014-6515/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6517 page", "url": "https://www.suse.com/security/cve/CVE-2014-6517/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6519 page", "url": "https://www.suse.com/security/cve/CVE-2014-6519/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6527 page", "url": "https://www.suse.com/security/cve/CVE-2014-6527/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6531 page", "url": "https://www.suse.com/security/cve/CVE-2014-6531/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6532 page", "url": "https://www.suse.com/security/cve/CVE-2014-6532/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6549 page", "url": "https://www.suse.com/security/cve/CVE-2014-6549/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6558 page", "url": "https://www.suse.com/security/cve/CVE-2014-6558/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6562 page", "url": "https://www.suse.com/security/cve/CVE-2014-6562/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6585 page", "url": "https://www.suse.com/security/cve/CVE-2014-6585/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6587 page", "url": "https://www.suse.com/security/cve/CVE-2014-6587/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6591 page", "url": "https://www.suse.com/security/cve/CVE-2014-6591/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6593 page", "url": "https://www.suse.com/security/cve/CVE-2014-6593/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-6601 page", "url": "https://www.suse.com/security/cve/CVE-2014-6601/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0383 page", "url": "https://www.suse.com/security/cve/CVE-2015-0383/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0395 page", "url": "https://www.suse.com/security/cve/CVE-2015-0395/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0400 page", "url": "https://www.suse.com/security/cve/CVE-2015-0400/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0403 page", "url": "https://www.suse.com/security/cve/CVE-2015-0403/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0406 page", "url": "https://www.suse.com/security/cve/CVE-2015-0406/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0407 page", "url": "https://www.suse.com/security/cve/CVE-2015-0407/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0408 page", "url": "https://www.suse.com/security/cve/CVE-2015-0408/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0410 page", "url": "https://www.suse.com/security/cve/CVE-2015-0410/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0412 page", "url": "https://www.suse.com/security/cve/CVE-2015-0412/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0413 page", "url": "https://www.suse.com/security/cve/CVE-2015-0413/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0421 page", "url": "https://www.suse.com/security/cve/CVE-2015-0421/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0437 page", "url": "https://www.suse.com/security/cve/CVE-2015-0437/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0458 page", "url": "https://www.suse.com/security/cve/CVE-2015-0458/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0459 page", "url": "https://www.suse.com/security/cve/CVE-2015-0459/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0460 page", "url": "https://www.suse.com/security/cve/CVE-2015-0460/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0469 page", "url": "https://www.suse.com/security/cve/CVE-2015-0469/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0477 page", "url": "https://www.suse.com/security/cve/CVE-2015-0477/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0478 page", "url": "https://www.suse.com/security/cve/CVE-2015-0478/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0480 page", "url": "https://www.suse.com/security/cve/CVE-2015-0480/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0484 page", "url": "https://www.suse.com/security/cve/CVE-2015-0484/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0488 page", "url": "https://www.suse.com/security/cve/CVE-2015-0488/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0491 page", "url": "https://www.suse.com/security/cve/CVE-2015-0491/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0492 page", "url": "https://www.suse.com/security/cve/CVE-2015-0492/" } ], "title": "Security update for Java OpenJDK", "tracking": { "current_release_date": "2014-10-24T14:17:30Z", "generator": { "date": "2014-10-24T14:17:30Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2015:0336-1", "initial_release_date": "2014-10-24T14:17:30Z", "revision_history": [ { "date": "2014-10-24T14:17:30Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "product": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "product_id": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "product": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "product_id": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "product": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "product_id": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "product": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "product_id": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "product": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "product_id": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64", "product": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64", "product_id": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Desktop 11 SP3", "product": { "name": "SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:suse_sled:11:sp3" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586" }, "product_reference": "java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3", "product_id": "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-1500", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-1500" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-1500", "url": "https://www.suse.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-1500", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-1500", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-1500", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-1500", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-1500" }, { "cve": "CVE-2013-1571", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-1571" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-1571", "url": "https://www.suse.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "SUSE Bug 824397 for CVE-2013-1571", "url": "https://bugzilla.suse.com/824397" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-1571", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-1571", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-1571", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-1571", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-1571" }, { "cve": "CVE-2013-2407", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2407" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2407", "url": "https://www.suse.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2407", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2407", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2407", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2407", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2407" }, { "cve": "CVE-2013-2412", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2412" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2412", "url": "https://www.suse.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2412", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2412", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2412", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2412", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2412" }, { "cve": "CVE-2013-2443", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2443" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2443", "url": "https://www.suse.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2443", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2443", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2443", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2443", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2443" }, { "cve": "CVE-2013-2444", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2444" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2444", "url": "https://www.suse.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2444", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2444", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2444", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2444", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2444" }, { "cve": "CVE-2013-2445", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2445" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2445", "url": "https://www.suse.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2445", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2445", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2445", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2445" }, { "cve": "CVE-2013-2446", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2446" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2446", "url": "https://www.suse.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2446", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2446", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2446", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2446", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2446" }, { "cve": "CVE-2013-2447", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2447" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2447", "url": "https://www.suse.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2447", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2447", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2447", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2447", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2447" }, { "cve": "CVE-2013-2448", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2448" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2448", "url": "https://www.suse.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2448", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2448", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2448", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2448", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2448" }, { "cve": "CVE-2013-2449", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2449" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2449", "url": "https://www.suse.com/security/cve/CVE-2013-2449" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2449", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2449", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2449", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2449" }, { "cve": "CVE-2013-2450", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2450" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2450", "url": "https://www.suse.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2450", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2450", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2450", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2450", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2450" }, { "cve": "CVE-2013-2451", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2451" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2451", "url": "https://www.suse.com/security/cve/CVE-2013-2451" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2451", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2451", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2451", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2451", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2013-2451" }, { "cve": "CVE-2013-2452", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2452" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2452", "url": "https://www.suse.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2452", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2452", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2452", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2452", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2452" }, { "cve": "CVE-2013-2453", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2453" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2453", "url": "https://www.suse.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2453", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2453", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2453", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2453", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2453" }, { "cve": "CVE-2013-2454", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2454" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2454", "url": "https://www.suse.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2454", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2454", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2454", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2454" }, { "cve": "CVE-2013-2455", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2455" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2455", "url": "https://www.suse.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2455", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2455", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2455", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2455", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2455" }, { "cve": "CVE-2013-2456", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2456" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2456", "url": "https://www.suse.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2456", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2456", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2456", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2456", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2456" }, { "cve": "CVE-2013-2457", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2457" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2457", "url": "https://www.suse.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2457", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2457", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2457", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2457", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2457" }, { "cve": "CVE-2013-2458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via \"an error related to method handles.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2458", "url": "https://www.suse.com/security/cve/CVE-2013-2458" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2458", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2458", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2458", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-2458" }, { "cve": "CVE-2013-2459", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2459" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2459", "url": "https://www.suse.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2459", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2459", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2459", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2459", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2459" }, { "cve": "CVE-2013-2460", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2460" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"insufficient access checks\" in the tracing component.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2460", "url": "https://www.suse.com/security/cve/CVE-2013-2460" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2460", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2460", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2460", "url": "https://bugzilla.suse.com/829212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2460" }, { "cve": "CVE-2013-2461", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2461" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2461", "url": "https://www.suse.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2461", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2461", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2461", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-2461" }, { "cve": "CVE-2013-2463", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2463" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2463", "url": "https://www.suse.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2463", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2463", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2463", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2463", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2463" }, { "cve": "CVE-2013-2465", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2465" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2465", "url": "https://www.suse.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2465", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2465", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2465", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2465", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2465" }, { "cve": "CVE-2013-2469", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2469" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2469", "url": "https://www.suse.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2469", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2469", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2469", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2469", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2469" }, { "cve": "CVE-2013-2470", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2470" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2470", "url": "https://www.suse.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2470", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2470", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2470", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2470", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2470" }, { "cve": "CVE-2013-2471", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2471" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2471", "url": "https://www.suse.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2471", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2471", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2471", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2471", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2471" }, { "cve": "CVE-2013-2472", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2472" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2472", "url": "https://www.suse.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2472", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2472", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2472", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2472", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2472" }, { "cve": "CVE-2013-2473", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-2473" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-2473", "url": "https://www.suse.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "SUSE Bug 825624 for CVE-2013-2473", "url": "https://bugzilla.suse.com/825624" }, { "category": "external", "summary": "SUSE Bug 828665 for CVE-2013-2473", "url": "https://bugzilla.suse.com/828665" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-2473", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 829708 for CVE-2013-2473", "url": "https://bugzilla.suse.com/829708" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-2473" }, { "cve": "CVE-2013-3829", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-3829" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE, Java SE Embedded component in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-3829", "url": "https://www.suse.com/security/cve/CVE-2013-3829" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-3829", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-3829", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-3829", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-3829", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-3829" }, { "cve": "CVE-2013-4002", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-4002" } ], "notes": [ { "category": "general", "text": "XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, Java SE Embedded 7u40 and earlier, and possibly other products allows remote attackers to cause a denial of service via vectors related to XML attribute names.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-4002", "url": "https://www.suse.com/security/cve/CVE-2013-4002" }, { "category": "external", "summary": "SUSE Bug 829212 for CVE-2013-4002", "url": "https://bugzilla.suse.com/829212" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-4002", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-4002", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-4002", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-4002", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-4002" }, { "cve": "CVE-2013-5772", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5772" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u40 and earlier and Java SE 6u60 and earlier allows remote attackers to affect integrity via unknown vectors related to jhat.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5772", "url": "https://www.suse.com/security/cve/CVE-2013-5772" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5772", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5772", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5772", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5772", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2013-5772" }, { "cve": "CVE-2013-5774", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5774" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5774", "url": "https://www.suse.com/security/cve/CVE-2013-5774" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5774", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5774", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5774", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5774", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5774" }, { "cve": "CVE-2013-5778", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5778" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5778", "url": "https://www.suse.com/security/cve/CVE-2013-5778" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5778", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5778", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5778", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5778", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5778" }, { "cve": "CVE-2013-5780", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5780" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5780", "url": "https://www.suse.com/security/cve/CVE-2013-5780" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5780", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5780", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5780", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5780", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5780" }, { "cve": "CVE-2013-5782", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5782" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5782", "url": "https://www.suse.com/security/cve/CVE-2013-5782" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5782", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5782", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5782", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5782", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5782" }, { "cve": "CVE-2013-5783", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5783" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Swing.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5783", "url": "https://www.suse.com/security/cve/CVE-2013-5783" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5783", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5783", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5783", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5783", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5783" }, { "cve": "CVE-2013-5784", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5784" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to SCRIPTING.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5784", "url": "https://www.suse.com/security/cve/CVE-2013-5784" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5784", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5784", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5784", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5784", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5784" }, { "cve": "CVE-2013-5790", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5790" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to BEANS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5790", "url": "https://www.suse.com/security/cve/CVE-2013-5790" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5790", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5790", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5790", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5790", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5790" }, { "cve": "CVE-2013-5797", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5797" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and JavaFX 2.2.40 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5797", "url": "https://www.suse.com/security/cve/CVE-2013-5797" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5797", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5797", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5797", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5797", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2013-5797" }, { "cve": "CVE-2013-5800", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5800" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JGSS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5800", "url": "https://www.suse.com/security/cve/CVE-2013-5800" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5800", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5800", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5800", "url": "https://bugzilla.suse.com/849212" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5800" }, { "cve": "CVE-2013-5802", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5802" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5802", "url": "https://www.suse.com/security/cve/CVE-2013-5802" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5802", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5802", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5802", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5802", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5802" }, { "cve": "CVE-2013-5803", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5803" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JGSS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5803", "url": "https://www.suse.com/security/cve/CVE-2013-5803" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5803", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5803", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5803", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5803", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-5803" }, { "cve": "CVE-2013-5804", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5804" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, and JRockit R27.7.6 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5804", "url": "https://www.suse.com/security/cve/CVE-2013-5804" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5804", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5804", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5804", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5804", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5804" }, { "cve": "CVE-2013-5805", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5805" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing, a different vulnerability than CVE-2013-5806.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5805", "url": "https://www.suse.com/security/cve/CVE-2013-5805" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5805", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5805", "url": "https://bugzilla.suse.com/846999" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5805" }, { "cve": "CVE-2013-5806", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5806" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing, a different vulnerability than CVE-2013-5805.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5806", "url": "https://www.suse.com/security/cve/CVE-2013-5806" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5806", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5806", "url": "https://bugzilla.suse.com/846999" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5806" }, { "cve": "CVE-2013-5809", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5809" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5829.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5809", "url": "https://www.suse.com/security/cve/CVE-2013-5809" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5809", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5809", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5809", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5809", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5809" }, { "cve": "CVE-2013-5814", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5814" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5814", "url": "https://www.suse.com/security/cve/CVE-2013-5814" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5814", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5814", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5814", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5814", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5814" }, { "cve": "CVE-2013-5817", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5817" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5817", "url": "https://www.suse.com/security/cve/CVE-2013-5817" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5817", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5817", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5817", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5817", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5817" }, { "cve": "CVE-2013-5820", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5820" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to JAX-WS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5820", "url": "https://www.suse.com/security/cve/CVE-2013-5820" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5820", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5820", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5820", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5820", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5820" }, { "cve": "CVE-2013-5823", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5823" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5823", "url": "https://www.suse.com/security/cve/CVE-2013-5823" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5823", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5823", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5823", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5823", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5823" }, { "cve": "CVE-2013-5825", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5825" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5825", "url": "https://www.suse.com/security/cve/CVE-2013-5825" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5825", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5825", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5825", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5825", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5825" }, { "cve": "CVE-2013-5829", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5829" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5809.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5829", "url": "https://www.suse.com/security/cve/CVE-2013-5829" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5829", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5829", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5829", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5829", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5829" }, { "cve": "CVE-2013-5830", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5830" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5830", "url": "https://www.suse.com/security/cve/CVE-2013-5830" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5830", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5830", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5830", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5830", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5830" }, { "cve": "CVE-2013-5840", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5840" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5840", "url": "https://www.suse.com/security/cve/CVE-2013-5840" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5840", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5840", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5840", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5840", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5840" }, { "cve": "CVE-2013-5842", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5842" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5850.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5842", "url": "https://www.suse.com/security/cve/CVE-2013-5842" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5842", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5842", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5842", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5842", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5842" }, { "cve": "CVE-2013-5849", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5849" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to AWT.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5849", "url": "https://www.suse.com/security/cve/CVE-2013-5849" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5849", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5849", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5849", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5849", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5849" }, { "cve": "CVE-2013-5850", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5850" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5842.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5850", "url": "https://www.suse.com/security/cve/CVE-2013-5850" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5850", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5850", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5850", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5850", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5850" }, { "cve": "CVE-2013-5851", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5851" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5851", "url": "https://www.suse.com/security/cve/CVE-2013-5851" }, { "category": "external", "summary": "SUSE Bug 846177 for CVE-2013-5851", "url": "https://bugzilla.suse.com/846177" }, { "category": "external", "summary": "SUSE Bug 846999 for CVE-2013-5851", "url": "https://bugzilla.suse.com/846999" }, { "category": "external", "summary": "SUSE Bug 849212 for CVE-2013-5851", "url": "https://bugzilla.suse.com/849212" }, { "category": "external", "summary": "SUSE Bug 852367 for CVE-2013-5851", "url": "https://bugzilla.suse.com/852367" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5851" }, { "cve": "CVE-2013-5878", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5878" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the Security component does not properly handle null XML namespace (xmlns) attributes during XML document canonicalization, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5878", "url": "https://www.suse.com/security/cve/CVE-2013-5878" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5878", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5878", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2013-5878" }, { "cve": "CVE-2013-5884", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5884" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to an incorrect check for code permissions by CORBA stub factories.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5884", "url": "https://www.suse.com/security/cve/CVE-2013-5884" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5884", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5884", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5884" }, { "cve": "CVE-2013-5893", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5893" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u45 and Java SE Embedded 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to improper handling of methods in MethodHandles in HotSpot JVM, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5893", "url": "https://www.suse.com/security/cve/CVE-2013-5893" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5893", "url": "https://bugzilla.suse.com/858818" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5893" }, { "cve": "CVE-2013-5896", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5896" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that com.sun.corba.se and its sub-packages are not included on the restricted package list.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5896", "url": "https://www.suse.com/security/cve/CVE-2013-5896" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5896", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5896", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5896" }, { "cve": "CVE-2013-5907", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5907" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is due to incorrect input validation in LookupProcessor.cpp in the ICU Layout Engine, which allows attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted font file.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5907", "url": "https://www.suse.com/security/cve/CVE-2013-5907" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5907", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5907", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2013-5907" }, { "cve": "CVE-2013-5910", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-5910" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that CanonicalizerBase.java in the XML canonicalizer allows untrusted code to access mutable byte arrays.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-5910", "url": "https://www.suse.com/security/cve/CVE-2013-5910" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2013-5910", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2013-5910", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-5910" }, { "cve": "CVE-2013-6629", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-6629" } ], "notes": [ { "category": "general", "text": "The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-6629", "url": "https://www.suse.com/security/cve/CVE-2013-6629" }, { "category": "external", "summary": "SUSE Bug 850430 for CVE-2013-6629", "url": "https://bugzilla.suse.com/850430" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2013-6629", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2013-6629", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2013-6629", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2013-6629", "url": "https://bugzilla.suse.com/877430" }, { "category": "external", "summary": "SUSE Bug 880246 for CVE-2013-6629", "url": "https://bugzilla.suse.com/880246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-6629" }, { "cve": "CVE-2013-6954", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2013-6954" } ], "notes": [ { "category": "general", "text": "The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2013-6954", "url": "https://www.suse.com/security/cve/CVE-2013-6954" }, { "category": "external", "summary": "SUSE Bug 856522 for CVE-2013-6954", "url": "https://bugzilla.suse.com/856522" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2013-6954", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2013-6954", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2013-6954", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2013-6954", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2013-6954" }, { "cve": "CVE-2014-0368", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0368" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and Java SE Embedded 7u45, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to incorrect permission checks when listening on a socket, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0368", "url": "https://www.suse.com/security/cve/CVE-2014-0368" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0368", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0368", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0368" }, { "cve": "CVE-2014-0373", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0373" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to throwing of an incorrect exception when SnmpStatusException should have been used in the SNMP implementation, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0373", "url": "https://www.suse.com/security/cve/CVE-2014-0373" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0373", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0373", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2014-0373" }, { "cve": "CVE-2014-0376", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0376" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect integrity via vectors related to JAXP. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to an improper check for \"code permissions when creating document builder factories.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0376", "url": "https://www.suse.com/security/cve/CVE-2014-0376" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0376", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0376", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0376" }, { "cve": "CVE-2014-0411", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0411" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information about encryption keys via a timing discrepancy during the TLS/SSL handshake.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0411", "url": "https://www.suse.com/security/cve/CVE-2014-0411" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0411", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0411", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2014-0411" }, { "cve": "CVE-2014-0416", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0416" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect integrity via vectors related to JAAS. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to how principals are set for the Subject class, which allows attackers to escape the sandbox using deserialization of a crafted Subject instance.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0416", "url": "https://www.suse.com/security/cve/CVE-2014-0416" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0416", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0416", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0416" }, { "cve": "CVE-2014-0422", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0422" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to missing package access checks in the Naming / JNDI component, which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0422", "url": "https://www.suse.com/security/cve/CVE-2014-0422" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0422", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0422", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0422" }, { "cve": "CVE-2014-0423", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0423" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote authenticated users to affect confidentiality and availability via unknown vectors related to Beans. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue is an XML External Entity (XXE) vulnerability in DocumentHandler.java, related to Beans decoding.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0423", "url": "https://www.suse.com/security/cve/CVE-2014-0423" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0423", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0423", "url": "https://bugzilla.suse.com/862064" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-0423" }, { "cve": "CVE-2014-0428", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0428" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to \"insufficient security checks in IIOP streams,\" which allows attackers to escape the sandbox.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0428", "url": "https://www.suse.com/security/cve/CVE-2014-0428" }, { "category": "external", "summary": "SUSE Bug 858818 for CVE-2014-0428", "url": "https://bugzilla.suse.com/858818" }, { "category": "external", "summary": "SUSE Bug 862064 for CVE-2014-0428", "url": "https://bugzilla.suse.com/862064" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0428", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0428", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0428" }, { "cve": "CVE-2014-0429", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0429" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0429", "url": "https://www.suse.com/security/cve/CVE-2014-0429" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0429", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0429", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0429", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0429", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0429" }, { "cve": "CVE-2014-0446", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0446" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0446", "url": "https://www.suse.com/security/cve/CVE-2014-0446" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0446", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0446", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0446", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0446", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0446" }, { "cve": "CVE-2014-0451", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0451" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-2412.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0451", "url": "https://www.suse.com/security/cve/CVE-2014-0451" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0451", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0451", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0451", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0451", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0451" }, { "cve": "CVE-2014-0452", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0452" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0458 and CVE-2014-2423.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0452", "url": "https://www.suse.com/security/cve/CVE-2014-0452" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0452", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0452", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0452", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0452", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0452" }, { "cve": "CVE-2014-0453", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0453" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0453", "url": "https://www.suse.com/security/cve/CVE-2014-0453" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0453", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0453", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0453", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0453", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0453" }, { "cve": "CVE-2014-0454", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0454" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0454", "url": "https://www.suse.com/security/cve/CVE-2014-0454" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0454", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0454", "url": "https://bugzilla.suse.com/877429" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0454" }, { "cve": "CVE-2014-0455", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0455" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0455", "url": "https://www.suse.com/security/cve/CVE-2014-0455" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0455", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0455", "url": "https://bugzilla.suse.com/877429" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0455" }, { "cve": "CVE-2014-0456", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0456" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0456", "url": "https://www.suse.com/security/cve/CVE-2014-0456" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0456", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0456", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0456" }, { "cve": "CVE-2014-0457", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0457" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0457", "url": "https://www.suse.com/security/cve/CVE-2014-0457" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0457", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0457", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0457", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0457", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0457" }, { "cve": "CVE-2014-0458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0458", "url": "https://www.suse.com/security/cve/CVE-2014-0458" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0458", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0458", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0458", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0458", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0458" }, { "cve": "CVE-2014-0459", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0459" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0459", "url": "https://www.suse.com/security/cve/CVE-2014-0459" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0459", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0459", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0459", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0459", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0459" }, { "cve": "CVE-2014-0460", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0460" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via vectors related to JNDI.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0460", "url": "https://www.suse.com/security/cve/CVE-2014-0460" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0460", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0460", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0460", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0460", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0460" }, { "cve": "CVE-2014-0461", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-0461" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-0461", "url": "https://www.suse.com/security/cve/CVE-2014-0461" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-0461", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-0461", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-0461", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-0461", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-0461" }, { "cve": "CVE-2014-1876", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-1876" } ], "notes": [ { "category": "general", "text": "The unpacker::redirect_stdio function in unpack.cpp in unpack200 in OpenJDK 6, 7, and 8; Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 does not securely create temporary files when a log file cannot be opened, which allows local users to overwrite arbitrary files via a symlink attack on /tmp/unpack.log.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-1876", "url": "https://www.suse.com/security/cve/CVE-2014-1876" }, { "category": "external", "summary": "SUSE Bug 863305 for CVE-2014-1876", "url": "https://bugzilla.suse.com/863305" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-1876", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-1876", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-1876", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-1876", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-1876" }, { "cve": "CVE-2014-2397", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2397" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2397", "url": "https://www.suse.com/security/cve/CVE-2014-2397" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2397", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2397", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2397" }, { "cve": "CVE-2014-2398", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2398" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and JRockit R27.8.1 and R28.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2398", "url": "https://www.suse.com/security/cve/CVE-2014-2398" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2398", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2398", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2398", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2398", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "low" } ], "title": "CVE-2014-2398" }, { "cve": "CVE-2014-2402", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2402" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-0455.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2402", "url": "https://www.suse.com/security/cve/CVE-2014-2402" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2402", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2402", "url": "https://bugzilla.suse.com/877429" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2402" }, { "cve": "CVE-2014-2403", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2403" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2403", "url": "https://www.suse.com/security/cve/CVE-2014-2403" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2403", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2403", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2403" }, { "cve": "CVE-2014-2412", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2412" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, SE 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-0451.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2412", "url": "https://www.suse.com/security/cve/CVE-2014-2412" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2412", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2412", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2412", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2412", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2412" }, { "cve": "CVE-2014-2413", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2413" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2413", "url": "https://www.suse.com/security/cve/CVE-2014-2413" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2413", "url": "https://bugzilla.suse.com/873873" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2413" }, { "cve": "CVE-2014-2414", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2414" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXB.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2414", "url": "https://www.suse.com/security/cve/CVE-2014-2414" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2414", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2414", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2414", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2414", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2414" }, { "cve": "CVE-2014-2421", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2421" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2421", "url": "https://www.suse.com/security/cve/CVE-2014-2421" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2421", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2421", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2421", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2421", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2421" }, { "cve": "CVE-2014-2423", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2423" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-0458.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2423", "url": "https://www.suse.com/security/cve/CVE-2014-2423" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2423", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2423", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2423", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2423", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2423" }, { "cve": "CVE-2014-2427", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2427" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2427", "url": "https://www.suse.com/security/cve/CVE-2014-2427" }, { "category": "external", "summary": "SUSE Bug 873872 for CVE-2014-2427", "url": "https://bugzilla.suse.com/873872" }, { "category": "external", "summary": "SUSE Bug 873873 for CVE-2014-2427", "url": "https://bugzilla.suse.com/873873" }, { "category": "external", "summary": "SUSE Bug 877429 for CVE-2014-2427", "url": "https://bugzilla.suse.com/877429" }, { "category": "external", "summary": "SUSE Bug 877430 for CVE-2014-2427", "url": "https://bugzilla.suse.com/877430" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2427" }, { "cve": "CVE-2014-2483", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2483" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u60 and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-4223. NOTE: the previous information is from the July 2014 CPU. Oracle has not commented on another vendor\u0027s claim that the issue is related to improper restriction of the \"use of privileged annotations.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2483", "url": "https://www.suse.com/security/cve/CVE-2014-2483" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-2483", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2483" }, { "cve": "CVE-2014-2490", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-2490" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-2490", "url": "https://www.suse.com/security/cve/CVE-2014-2490" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-2490", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-2490" }, { "cve": "CVE-2014-3566", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-3566" } ], "notes": [ { "category": "general", "text": "The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the \"POODLE\" issue.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-3566", "url": "https://www.suse.com/security/cve/CVE-2014-3566" }, { "category": "external", "summary": "SUSE Bug 1011293 for CVE-2014-3566", "url": "https://bugzilla.suse.com/1011293" }, { "category": "external", "summary": "SUSE Bug 1031023 for CVE-2014-3566", "url": "https://bugzilla.suse.com/1031023" }, { "category": "external", "summary": "SUSE Bug 901223 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901223" }, { "category": "external", "summary": "SUSE Bug 901254 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901254" }, { "category": "external", "summary": "SUSE Bug 901277 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901277" }, { "category": "external", "summary": "SUSE Bug 901748 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901748" }, { "category": "external", "summary": "SUSE Bug 901757 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901757" }, { "category": "external", "summary": "SUSE Bug 901759 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901759" }, { "category": "external", "summary": "SUSE Bug 901889 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901889" }, { "category": "external", "summary": "SUSE Bug 901968 for CVE-2014-3566", "url": "https://bugzilla.suse.com/901968" }, { "category": "external", "summary": "SUSE Bug 902229 for CVE-2014-3566", "url": "https://bugzilla.suse.com/902229" }, { "category": "external", "summary": "SUSE Bug 902233 for CVE-2014-3566", "url": "https://bugzilla.suse.com/902233" }, { "category": "external", "summary": "SUSE Bug 902476 for CVE-2014-3566", "url": "https://bugzilla.suse.com/902476" }, { "category": "external", "summary": "SUSE Bug 903405 for CVE-2014-3566", "url": "https://bugzilla.suse.com/903405" }, { "category": "external", "summary": "SUSE Bug 903684 for CVE-2014-3566", "url": "https://bugzilla.suse.com/903684" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-3566", "url": "https://bugzilla.suse.com/904889" }, { "category": "external", "summary": "SUSE Bug 905106 for CVE-2014-3566", "url": "https://bugzilla.suse.com/905106" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-3566", "url": "https://bugzilla.suse.com/914041" }, { "category": "external", "summary": "SUSE Bug 994144 for CVE-2014-3566", "url": "https://bugzilla.suse.com/994144" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 3.4, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-3566" }, { "cve": "CVE-2014-4208", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4208" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4220.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4208", "url": "https://www.suse.com/security/cve/CVE-2014-4208" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4208", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4208", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4208" }, { "cve": "CVE-2014-4209", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4209" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality and integrity via vectors related to JMX.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4209", "url": "https://www.suse.com/security/cve/CVE-2014-4209" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4209", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4209", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4209", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4209", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4209" }, { "cve": "CVE-2014-4216", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4216" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4216", "url": "https://www.suse.com/security/cve/CVE-2014-4216" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4216", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4216" }, { "cve": "CVE-2014-4218", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4218" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4218", "url": "https://www.suse.com/security/cve/CVE-2014-4218" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4218", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4218", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4218", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4218", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4218" }, { "cve": "CVE-2014-4219", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4219" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4219", "url": "https://www.suse.com/security/cve/CVE-2014-4219" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4219", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4219", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4219", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4219", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4219" }, { "cve": "CVE-2014-4220", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4220" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4208.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4220", "url": "https://www.suse.com/security/cve/CVE-2014-4220" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4220", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4220", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4220" }, { "cve": "CVE-2014-4221", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4221" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4221", "url": "https://www.suse.com/security/cve/CVE-2014-4221" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4221", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4221", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4221" }, { "cve": "CVE-2014-4223", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4223" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-2483.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4223", "url": "https://www.suse.com/security/cve/CVE-2014-4223" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4223", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4223" }, { "cve": "CVE-2014-4227", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4227" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4227", "url": "https://www.suse.com/security/cve/CVE-2014-4227" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4227", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4227", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4227", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4227" }, { "cve": "CVE-2014-4244", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4244" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and JRockit R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4244", "url": "https://www.suse.com/security/cve/CVE-2014-4244" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4244", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4244", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4244", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4244", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4244" }, { "cve": "CVE-2014-4247", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4247" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4247", "url": "https://www.suse.com/security/cve/CVE-2014-4247" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4247", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4247" }, { "cve": "CVE-2014-4252", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4252" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4252", "url": "https://www.suse.com/security/cve/CVE-2014-4252" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4252", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4252", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4252", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4252", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4252" }, { "cve": "CVE-2014-4262", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4262" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4262", "url": "https://www.suse.com/security/cve/CVE-2014-4262" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4262", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4262", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4262", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4262", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4262" }, { "cve": "CVE-2014-4263", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4263" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to \"Diffie-Hellman key agreement.\"", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4263", "url": "https://www.suse.com/security/cve/CVE-2014-4263" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4263", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4263", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4263", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4263", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4263" }, { "cve": "CVE-2014-4264", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4264" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4264", "url": "https://www.suse.com/security/cve/CVE-2014-4264" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4264", "url": "https://bugzilla.suse.com/887530" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4264" }, { "cve": "CVE-2014-4265", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4265" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u75, 7u60, and 8u5 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4265", "url": "https://www.suse.com/security/cve/CVE-2014-4265" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4265", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4265", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4265", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4265" }, { "cve": "CVE-2014-4266", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4266" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u60 and 8u5 allows remote attackers to affect integrity via unknown vectors related to Serviceability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4266", "url": "https://www.suse.com/security/cve/CVE-2014-4266" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4266", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4266", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4266" }, { "cve": "CVE-2014-4268", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4268" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality via unknown vectors related to Swing.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4268", "url": "https://www.suse.com/security/cve/CVE-2014-4268" }, { "category": "external", "summary": "SUSE Bug 887530 for CVE-2014-4268", "url": "https://bugzilla.suse.com/887530" }, { "category": "external", "summary": "SUSE Bug 891699 for CVE-2014-4268", "url": "https://bugzilla.suse.com/891699" }, { "category": "external", "summary": "SUSE Bug 891700 for CVE-2014-4268", "url": "https://bugzilla.suse.com/891700" }, { "category": "external", "summary": "SUSE Bug 891701 for CVE-2014-4268", "url": "https://bugzilla.suse.com/891701" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4268" }, { "cve": "CVE-2014-4288", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-4288" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-4288", "url": "https://www.suse.com/security/cve/CVE-2014-4288" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-4288", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-4288", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-4288", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-4288", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-4288" }, { "cve": "CVE-2014-6456", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6456" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6456", "url": "https://www.suse.com/security/cve/CVE-2014-6456" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6456", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6456", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6456", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6456", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6456" }, { "cve": "CVE-2014-6457", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6457" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6457", "url": "https://www.suse.com/security/cve/CVE-2014-6457" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6457", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6457", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6457", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6457", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6457" }, { "cve": "CVE-2014-6458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6458", "url": "https://www.suse.com/security/cve/CVE-2014-6458" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6458", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6458", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6458", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6458", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6458" }, { "cve": "CVE-2014-6466", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6466" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Internet Explorer, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6466", "url": "https://www.suse.com/security/cve/CVE-2014-6466" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6466", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6466", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6466", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6466", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6466" }, { "cve": "CVE-2014-6468", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6468" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u20 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6468", "url": "https://www.suse.com/security/cve/CVE-2014-6468" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6468", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6468", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6468", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6468" }, { "cve": "CVE-2014-6476", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6476" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6527.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6476", "url": "https://www.suse.com/security/cve/CVE-2014-6476" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6476", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6476", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6476", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6476", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6476" }, { "cve": "CVE-2014-6485", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6485" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u20 and JavaFX 2.2.65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6485", "url": "https://www.suse.com/security/cve/CVE-2014-6485" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6485", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6485", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6485", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6485" }, { "cve": "CVE-2014-6492", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6492" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Firefox, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6492", "url": "https://www.suse.com/security/cve/CVE-2014-6492" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6492", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6492", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6492", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6492", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6492" }, { "cve": "CVE-2014-6493", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6493" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6503, and CVE-2014-6532.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6493", "url": "https://www.suse.com/security/cve/CVE-2014-6493" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6493", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6493", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6493", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6493", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6493" }, { "cve": "CVE-2014-6502", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6502" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6502", "url": "https://www.suse.com/security/cve/CVE-2014-6502" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6502", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6502", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6502", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6502", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6502" }, { "cve": "CVE-2014-6503", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6503" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6532.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6503", "url": "https://www.suse.com/security/cve/CVE-2014-6503" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6503", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6503", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6503", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6503", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6503" }, { "cve": "CVE-2014-6504", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6504" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, and 7u67, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6504", "url": "https://www.suse.com/security/cve/CVE-2014-6504" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6504", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6504", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6504", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6504" }, { "cve": "CVE-2014-6506", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6506" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6506", "url": "https://www.suse.com/security/cve/CVE-2014-6506" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6506", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6506", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6506", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6506", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6506" }, { "cve": "CVE-2014-6511", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6511" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6511", "url": "https://www.suse.com/security/cve/CVE-2014-6511" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6511", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6511", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6511", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6511", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6511" }, { "cve": "CVE-2014-6512", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6512" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6512", "url": "https://www.suse.com/security/cve/CVE-2014-6512" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6512", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6512", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6512", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6512", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6512" }, { "cve": "CVE-2014-6513", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6513" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6513", "url": "https://www.suse.com/security/cve/CVE-2014-6513" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6513", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6513", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6513", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6513", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6513" }, { "cve": "CVE-2014-6515", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6515" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6515", "url": "https://www.suse.com/security/cve/CVE-2014-6515" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6515", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6515", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6515", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6515", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6515" }, { "cve": "CVE-2014-6517", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6517" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and Jrockit R27.8.3 and R28.3.3 allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6517", "url": "https://www.suse.com/security/cve/CVE-2014-6517" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6517", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6517", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6517", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6517" }, { "cve": "CVE-2014-6519", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6519" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect integrity via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6519", "url": "https://www.suse.com/security/cve/CVE-2014-6519" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6519", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6519", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6519", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6519" }, { "cve": "CVE-2014-6527", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6527" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6476.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6527", "url": "https://www.suse.com/security/cve/CVE-2014-6527" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6527", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6527", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6527", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6527", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6527" }, { "cve": "CVE-2014-6531", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6531" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6531", "url": "https://www.suse.com/security/cve/CVE-2014-6531" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6531", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6531", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6531", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6531", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6531" }, { "cve": "CVE-2014-6532", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6532" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6503.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6532", "url": "https://www.suse.com/security/cve/CVE-2014-6532" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6532", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6532", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6532", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6532", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6532" }, { "cve": "CVE-2014-6549", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6549" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6549", "url": "https://www.suse.com/security/cve/CVE-2014-6549" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6549", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6549" }, { "cve": "CVE-2014-6558", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6558" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6558", "url": "https://www.suse.com/security/cve/CVE-2014-6558" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6558", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6558", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6558", "url": "https://bugzilla.suse.com/901246" }, { "category": "external", "summary": "SUSE Bug 904889 for CVE-2014-6558", "url": "https://bugzilla.suse.com/904889" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6558" }, { "cve": "CVE-2014-6562", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6562" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6562", "url": "https://www.suse.com/security/cve/CVE-2014-6562" }, { "category": "external", "summary": "SUSE Bug 901239 for CVE-2014-6562", "url": "https://bugzilla.suse.com/901239" }, { "category": "external", "summary": "SUSE Bug 901242 for CVE-2014-6562", "url": "https://bugzilla.suse.com/901242" }, { "category": "external", "summary": "SUSE Bug 901246 for CVE-2014-6562", "url": "https://bugzilla.suse.com/901246" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6562" }, { "cve": "CVE-2014-6585", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6585" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6585", "url": "https://www.suse.com/security/cve/CVE-2014-6585" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6585", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2014-6585" }, { "cve": "CVE-2014-6587", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6587" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6587", "url": "https://www.suse.com/security/cve/CVE-2014-6587" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6587", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6587" }, { "cve": "CVE-2014-6591", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6591" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6591", "url": "https://www.suse.com/security/cve/CVE-2014-6591" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6591", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6591" }, { "cve": "CVE-2014-6593", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6593" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit 27.8.4 and 28.3.4 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6593", "url": "https://www.suse.com/security/cve/CVE-2014-6593" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6593", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6593" }, { "cve": "CVE-2014-6601", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-6601" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-6601", "url": "https://www.suse.com/security/cve/CVE-2014-6601" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2014-6601", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2014-6601" }, { "cve": "CVE-2015-0383", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0383" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows local users to affect integrity and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0383", "url": "https://www.suse.com/security/cve/CVE-2015-0383" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0383", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0383" }, { "cve": "CVE-2015-0395", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0395" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0395", "url": "https://www.suse.com/security/cve/CVE-2015-0395" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0395", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0395" }, { "cve": "CVE-2015-0400", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0400" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0400", "url": "https://www.suse.com/security/cve/CVE-2015-0400" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0400", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0400" }, { "cve": "CVE-2015-0403", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0403" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0403", "url": "https://www.suse.com/security/cve/CVE-2015-0403" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0403", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0403" }, { "cve": "CVE-2015-0406", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0406" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0406", "url": "https://www.suse.com/security/cve/CVE-2015-0406" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0406", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0406" }, { "cve": "CVE-2015-0407", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0407" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Swing.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0407", "url": "https://www.suse.com/security/cve/CVE-2015-0407" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0407", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0407" }, { "cve": "CVE-2015-0408", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0408" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0408", "url": "https://www.suse.com/security/cve/CVE-2015-0408" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0408", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0408" }, { "cve": "CVE-2015-0410", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0410" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0410", "url": "https://www.suse.com/security/cve/CVE-2015-0410" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0410", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0410" }, { "cve": "CVE-2015-0412", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0412" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0412", "url": "https://www.suse.com/security/cve/CVE-2015-0412" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0412", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0412" }, { "cve": "CVE-2015-0413", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0413" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u72 and 8u25 allows local users to affect integrity via unknown vectors related to Serviceability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0413", "url": "https://www.suse.com/security/cve/CVE-2015-0413" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0413", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0413" }, { "cve": "CVE-2015-0421", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0421" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0421", "url": "https://www.suse.com/security/cve/CVE-2015-0421" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0421", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0421" }, { "cve": "CVE-2015-0437", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0437" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0437", "url": "https://www.suse.com/security/cve/CVE-2015-0437" }, { "category": "external", "summary": "SUSE Bug 914041 for CVE-2015-0437", "url": "https://bugzilla.suse.com/914041" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0437" }, { "cve": "CVE-2015-0458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0458", "url": "https://www.suse.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0458", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "important" } ], "title": "CVE-2015-0458" }, { "cve": "CVE-2015-0459", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0459" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0459", "url": "https://www.suse.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0459", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0459", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0459" }, { "cve": "CVE-2015-0460", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0460" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0460", "url": "https://www.suse.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0460", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0460" }, { "cve": "CVE-2015-0469", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0469" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0469", "url": "https://www.suse.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0469", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0469", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0469" }, { "cve": "CVE-2015-0477", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0477" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity via unknown vectors related to Beans.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0477", "url": "https://www.suse.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0477", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0477" }, { "cve": "CVE-2015-0478", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0478" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0478", "url": "https://www.suse.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0478", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 944456 for CVE-2015-0478", "url": "https://bugzilla.suse.com/944456" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0478" }, { "cve": "CVE-2015-0480", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0480" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0480", "url": "https://www.suse.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0480", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0480" }, { "cve": "CVE-2015-0484", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0484" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0484", "url": "https://www.suse.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0484", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0484" }, { "cve": "CVE-2015-0488", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0488" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0488", "url": "https://www.suse.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0488", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "moderate" } ], "title": "CVE-2015-0488" }, { "cve": "CVE-2015-0491", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0491" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0491", "url": "https://www.suse.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0491", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0491", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0491" }, { "cve": "CVE-2015-0492", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0492" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0492", "url": "https://www.suse.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0492", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-demo-1.7.0.71-0.7.1.x86_64", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.i586", "SUSE Linux Enterprise Desktop 11 SP3:java-1_7_0-openjdk-devel-1.7.0.71-0.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2014-10-24T14:17:30Z", "details": "critical" } ], "title": "CVE-2015-0492" } ] }
suse-su-2015:0789-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for java-1_7_0-openjdk, java-1_7_0-openjdk-bootstrap", "title": "Title of the patch" }, { "category": "description", "text": "OpenJDK was updated to 2.5.5 - OpenJdk 7u79 to fix security issues and bugs:\n\nThe following vulnerabilities were fixed:\n\n* CVE-2015-0458: Deployment: unauthenticated remote attackers could execute arbitrary code via multiple protocols.\n* CVE-2015-0459: 2D: unauthenticated remote attackers could execute arbitrary code via multiple protocols.\n* CVE-2015-0460: Hotspot: unauthenticated remote attackers could execute arbitrary code via multiple protocols.\n* CVE-2015-0469: 2D: unauthenticated remote attackers could execute arbitrary code via multiple protocols.\n* CVE-2015-0477: Beans: unauthenticated remote attackers could update, insert or delete some JAVA accessible data via multiple protocols\n* CVE-2015-0478: JCE: unauthenticated remote attackers could read some JAVA accessible data via multiple protocols\n* CVE-2015-0480: Tools: unauthenticated remote attackers could update, insert or delete some JAVA accessible data via multiple protocols and cause a partial denial of service (partial DOS)\n* CVE-2015-0484: JavaFX: unauthenticated remote attackers could read, update, insert or delete access some Java accessible data via multiple protocols and cause a partial denial of service (partial DOS).\n* CVE-2015-0488: JSSE: unauthenticated remote attackers could cause a partial denial of service (partial DOS).\n* CVE-2015-0491: 2D: unauthenticated remote attackers could execute arbitrary code via multiple protocols.\n* CVE-2015-0492: JavaFX: unauthenticated remote attackers could execute arbitrary code via multiple protocols.\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-SLE-DESKTOP-12-2015-176,SUSE-SLE-SERVER-12-2015-176", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0789-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2015:0789-1", "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150789-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2015:0789-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2015-April/001363.html" }, { "category": "self", "summary": "SUSE Bug 927591", "url": "https://bugzilla.suse.com/927591" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0458 page", "url": "https://www.suse.com/security/cve/CVE-2015-0458/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0459 page", "url": "https://www.suse.com/security/cve/CVE-2015-0459/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0460 page", "url": "https://www.suse.com/security/cve/CVE-2015-0460/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0469 page", "url": "https://www.suse.com/security/cve/CVE-2015-0469/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0477 page", "url": "https://www.suse.com/security/cve/CVE-2015-0477/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0478 page", "url": "https://www.suse.com/security/cve/CVE-2015-0478/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0480 page", "url": "https://www.suse.com/security/cve/CVE-2015-0480/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0484 page", "url": "https://www.suse.com/security/cve/CVE-2015-0484/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0488 page", "url": "https://www.suse.com/security/cve/CVE-2015-0488/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0491 page", "url": "https://www.suse.com/security/cve/CVE-2015-0491/" }, { "category": "self", "summary": "SUSE CVE CVE-2015-0492 page", "url": "https://www.suse.com/security/cve/CVE-2015-0492/" } ], "title": "Security update for java-1_7_0-openjdk, java-1_7_0-openjdk-bootstrap", "tracking": { "current_release_date": "2015-04-23T14:27:30Z", "generator": { "date": "2015-04-23T14:27:30Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2015:0789-1", "initial_release_date": "2015-04-23T14:27:30Z", "revision_history": [ { "date": "2015-04-23T14:27:30Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "product": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "product_id": "java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "product": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "product_id": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "product": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "product_id": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "product": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "product_id": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "product": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "product_id": "java-1_7_0-openjdk-1.7.0.79-15.1.s390x" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "product": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "product_id": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "product": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "product_id": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "product": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "product_id": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "product": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "product_id": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "product": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "product_id": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "product": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "product_id": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64" } }, { "category": "product_version", "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "product": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "product_id": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Desktop 12", "product": { "name": "SUSE Linux Enterprise Desktop 12", "product_id": "SUSE Linux Enterprise Desktop 12", "product_identification_helper": { "cpe": "cpe:/o:suse:sled:12" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12", "product": { "name": "SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12", "product_identification_helper": { "cpe": "cpe:/o:suse:sles:12" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Desktop 12", "product_id": "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Desktop 12", "product_id": "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server 12", "product_id": "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le" }, "product_reference": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x" }, "product_reference": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" }, { "category": "default_component_of", "full_product_name": { "name": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" }, "product_reference": "java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12" } ] }, "vulnerabilities": [ { "cve": "CVE-2015-0458", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0458" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in in Oracle Java SE 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0458", "url": "https://www.suse.com/security/cve/CVE-2015-0458" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0458", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "important" } ], "title": "CVE-2015-0458" }, { "cve": "CVE-2015-0459", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0459" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0491.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0459", "url": "https://www.suse.com/security/cve/CVE-2015-0459" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0459", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0459", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "critical" } ], "title": "CVE-2015-0459" }, { "cve": "CVE-2015-0460", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0460" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0460", "url": "https://www.suse.com/security/cve/CVE-2015-0460" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0460", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "critical" } ], "title": "CVE-2015-0460" }, { "cve": "CVE-2015-0469", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0469" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0469", "url": "https://www.suse.com/security/cve/CVE-2015-0469" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0469", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0469", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "critical" } ], "title": "CVE-2015-0469" }, { "cve": "CVE-2015-0477", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0477" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity via unknown vectors related to Beans.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0477", "url": "https://www.suse.com/security/cve/CVE-2015-0477" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0477", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "moderate" } ], "title": "CVE-2015-0477" }, { "cve": "CVE-2015-0478", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0478" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect confidentiality via vectors related to JCE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0478", "url": "https://www.suse.com/security/cve/CVE-2015-0478" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0478", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 944456 for CVE-2015-0478", "url": "https://bugzilla.suse.com/944456" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "moderate" } ], "title": "CVE-2015-0478" }, { "cve": "CVE-2015-0480", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0480" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect integrity and availability via unknown vectors related to Tools.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0480", "url": "https://www.suse.com/security/cve/CVE-2015-0480" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0480", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "moderate" } ], "title": "CVE-2015-0480" }, { "cve": "CVE-2015-0484", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0484" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0492.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0484", "url": "https://www.suse.com/security/cve/CVE-2015-0484" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0484", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "moderate" } ], "title": "CVE-2015-0484" }, { "cve": "CVE-2015-0488", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0488" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, allows remote attackers to affect availability via vectors related to JSSE.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0488", "url": "https://www.suse.com/security/cve/CVE-2015-0488" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0488", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "moderate" } ], "title": "CVE-2015-0488" }, { "cve": "CVE-2015-0491", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0491" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0491", "url": "https://www.suse.com/security/cve/CVE-2015-0491" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0491", "url": "https://bugzilla.suse.com/927591" }, { "category": "external", "summary": "SUSE Bug 932310 for CVE-2015-0491", "url": "https://bugzilla.suse.com/932310" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "critical" } ], "title": "CVE-2015-0491" }, { "cve": "CVE-2015-0492", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2015-0492" } ], "notes": [ { "category": "general", "text": "Unspecified vulnerability in Oracle Java SE 7u76 and 8u40, and JavaFX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0484.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2015-0492", "url": "https://www.suse.com/security/cve/CVE-2015-0492" }, { "category": "external", "summary": "SUSE Bug 927591 for CVE-2015-0492", "url": "https://bugzilla.suse.com/927591" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Desktop 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-demo-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-devel-1.7.0.79-15.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12:java-1_7_0-openjdk-headless-1.7.0.79-15.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2015-04-23T14:27:30Z", "details": "critical" } ], "title": "CVE-2015-0492" } ] }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.