Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-9843
Vulnerability from cvelistv5
Published
2017-05-23 03:56
Modified
2024-08-06 02:59
Severity ?
EPSS score ?
Summary
The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T02:59:03.637Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "RHSA-2017:1221", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2017:1221" }, { "name": "RHSA-2017:1220", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2017:1220" }, { "name": "RHSA-2017:3047", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2017:3047" }, { "name": "[oss-security] 20161205 Re: CVE Request: zlib security issues found during audit", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2016/12/05/21" }, { "name": "95131", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/95131" }, { "name": "1041888", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1041888" }, { "name": "RHSA-2017:3046", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2017:3046" }, { "name": "openSUSE-SU-2017:0077", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2017-01/msg00050.html" }, { "name": "GLSA-201701-56", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "https://security.gentoo.org/glsa/201701-56" }, { "name": "1039427", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id/1039427" }, { "name": "RHSA-2017:1222", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2017:1222" }, { "name": "openSUSE-SU-2017:0080", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2017-01/msg00053.html" }, { "name": "RHSA-2017:3453", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2017:3453" }, { "name": "openSUSE-SU-2016:3202", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2016-12/msg00127.html" }, { "name": "RHSA-2017:2999", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2017:2999" }, { "name": "[debian-lts-announce] 20190324 [SECURITY] [DLA 1725-1] rsync security update", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.debian.org/debian-lts-announce/2019/03/msg00027.html" }, { "name": "USN-4246-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "https://usn.ubuntu.com/4246-1/" }, { "name": "[debian-lts-announce] 20200129 [SECURITY] [DLA 2085-1] zlib security update", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00030.html" }, { "name": "USN-4292-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "https://usn.ubuntu.com/4292-1/" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://support.apple.com/HT208144" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://wiki.mozilla.org/MOSS/Secure_Open_Source/Completed#zlib" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://support.apple.com/HT208113" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://support.apple.com/HT208112" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://support.apple.com/HT208115" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://github.com/madler/zlib/commit/d1d577490c15a0c6862473d7576352a9f18ef811" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://security.netapp.com/advisory/ntap-20181018-0002/" }, { "name": "GLSA-202007-54", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "https://security.gentoo.org/glsa/202007-54" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2016-09-30T00:00:00", "descriptions": [ { "lang": "en", "value": "The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2021-01-06T16:15:49", "orgId": "f81092c5-7f14-476d-80dc-24857f90be84", "shortName": "microfocus" }, "references": [ { "name": "RHSA-2017:1221", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2017:1221" }, { "name": "RHSA-2017:1220", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2017:1220" }, { "name": "RHSA-2017:3047", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2017:3047" }, { "name": "[oss-security] 20161205 Re: CVE Request: zlib security issues found during audit", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2016/12/05/21" }, { "name": "95131", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/95131" }, { "name": "1041888", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1041888" }, { "name": "RHSA-2017:3046", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2017:3046" }, { "name": "openSUSE-SU-2017:0077", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2017-01/msg00050.html" }, { "name": "GLSA-201701-56", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "https://security.gentoo.org/glsa/201701-56" }, { "name": "1039427", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id/1039427" }, { "name": "RHSA-2017:1222", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2017:1222" }, { "name": "openSUSE-SU-2017:0080", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2017-01/msg00053.html" }, { "name": "RHSA-2017:3453", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2017:3453" }, { "name": "openSUSE-SU-2016:3202", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2016-12/msg00127.html" }, { "name": "RHSA-2017:2999", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2017:2999" }, { "name": "[debian-lts-announce] 20190324 [SECURITY] [DLA 1725-1] rsync security update", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.debian.org/debian-lts-announce/2019/03/msg00027.html" }, { "name": "USN-4246-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "https://usn.ubuntu.com/4246-1/" }, { "name": "[debian-lts-announce] 20200129 [SECURITY] [DLA 2085-1] zlib security update", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00030.html" }, { "name": "USN-4292-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "https://usn.ubuntu.com/4292-1/" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "tags": [ "x_refsource_MISC" ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://support.apple.com/HT208144" }, { "tags": [ "x_refsource_MISC" ], "url": "https://wiki.mozilla.org/MOSS/Secure_Open_Source/Completed#zlib" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://support.apple.com/HT208113" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://support.apple.com/HT208112" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://support.apple.com/HT208115" }, { "tags": [ "x_refsource_MISC" ], "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://github.com/madler/zlib/commit/d1d577490c15a0c6862473d7576352a9f18ef811" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://security.netapp.com/advisory/ntap-20181018-0002/" }, { "name": "GLSA-202007-54", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "https://security.gentoo.org/glsa/202007-54" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@microfocus.com", "ID": "CVE-2016-9843", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2017:1221", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:1221" }, { "name": "RHSA-2017:1220", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:1220" }, { "name": "RHSA-2017:3047", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:3047" }, { "name": "[oss-security] 20161205 Re: CVE Request: zlib security issues found during audit", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/12/05/21" }, { "name": "95131", "refsource": "BID", "url": "http://www.securityfocus.com/bid/95131" }, { "name": "1041888", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1041888" }, { "name": "RHSA-2017:3046", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:3046" }, { "name": "openSUSE-SU-2017:0077", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2017-01/msg00050.html" }, { "name": "GLSA-201701-56", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201701-56" }, { "name": "1039427", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1039427" }, { "name": "RHSA-2017:1222", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:1222" }, { "name": "openSUSE-SU-2017:0080", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2017-01/msg00053.html" }, { "name": "RHSA-2017:3453", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:3453" }, { "name": "openSUSE-SU-2016:3202", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2016-12/msg00127.html" }, { "name": "RHSA-2017:2999", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:2999" }, { "name": "[debian-lts-announce] 20190324 [SECURITY] [DLA 1725-1] rsync security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2019/03/msg00027.html" }, { "name": "USN-4246-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4246-1/" }, { "name": "[debian-lts-announce] 20200129 [SECURITY] [DLA 2085-1] zlib security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00030.html" }, { "name": "USN-4292-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4292-1/" }, { "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html" }, { "name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "name": "https://www.oracle.com/security-alerts/cpujul2020.html", "refsource": "MISC", "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html" }, { "name": "https://support.apple.com/HT208144", "refsource": "CONFIRM", "url": "https://support.apple.com/HT208144" }, { "name": "https://wiki.mozilla.org/MOSS/Secure_Open_Source/Completed#zlib", "refsource": "MISC", "url": "https://wiki.mozilla.org/MOSS/Secure_Open_Source/Completed#zlib" }, { "name": "https://support.apple.com/HT208113", "refsource": "CONFIRM", "url": "https://support.apple.com/HT208113" }, { "name": "https://support.apple.com/HT208112", "refsource": "CONFIRM", "url": "https://support.apple.com/HT208112" }, { "name": "https://support.apple.com/HT208115", "refsource": "CONFIRM", "url": "https://support.apple.com/HT208115" }, { "name": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "refsource": "MISC", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" }, { "name": "https://github.com/madler/zlib/commit/d1d577490c15a0c6862473d7576352a9f18ef811", "refsource": "CONFIRM", "url": "https://github.com/madler/zlib/commit/d1d577490c15a0c6862473d7576352a9f18ef811" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "name": "https://security.netapp.com/advisory/ntap-20181018-0002/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20181018-0002/" }, { "name": "GLSA-202007-54", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/202007-54" } ] } } } }, "cveMetadata": { "assignerOrgId": "f81092c5-7f14-476d-80dc-24857f90be84", "assignerShortName": "microfocus", "cveId": "CVE-2016-9843", "datePublished": "2017-05-23T03:56:00", "dateReserved": "2016-12-05T00:00:00", "dateUpdated": "2024-08-06T02:59:03.637Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2016-9843\",\"sourceIdentifier\":\"security@opentext.com\",\"published\":\"2017-05-23T04:29:01.900\",\"lastModified\":\"2024-11-21T03:01:51.617\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n crc32_big en crc32.c in zlib 1.2.8 podr\u00eda permitir que atacantes dependientes del contexto causen impactos no especificados mediante vectores que implican c\u00e1lculos CRC big-endian.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zlib:zlib:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.2.0\",\"versionEndExcluding\":\"1.2.9\",\"matchCriteriaId\":\"335E67A2-8ED1-4E9C-B63A-0B4F4F963A94\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4863BE36-D16A-4D75-90D9-FD76DB5B48B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EA337A3-B9A3-4962-B8BD-8E0C7C5B28EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03117DF1-3BEC-4B8D-AD63-DBBDB2126081\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:database_server:18c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6833701E-5510-4180-9523-9CFD318DEE6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update161:*:*:*:*:*:*\",\"matchCriteriaId\":\"7037AEF9-403D-43EC-ABBB-B46619241586\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update151:*:*:*:*:*:*\",\"matchCriteriaId\":\"B781F1F7-DE18-41F7-83C1-8690B0884DDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.8.0:update144:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D36F2A6-1329-4D74-BADC-C22D46CF7CFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update161:*:*:*:*:*:*\",\"matchCriteriaId\":\"D53D6C3C-C8F3-4FF4-AE9C-1BFF14E74EDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update151:*:*:*:*:*:*\",\"matchCriteriaId\":\"71219100-B476-4062-A40A-13F1B8C7DAED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.8.0:update144:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCC055BA-0D21-4D2B-AC9B-B81B8468860C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.5.0\",\"versionEndIncluding\":\"5.5.61\",\"matchCriteriaId\":\"F370B9CC-03AA-436B-AF81-1FD48F33BAEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.6.0\",\"versionEndIncluding\":\"5.6.41\",\"matchCriteriaId\":\"9A2BAC98-4BC4-44EB-AE09-826BD21D5E3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.7.0\",\"versionEndIncluding\":\"5.7.23\",\"matchCriteriaId\":\"76702038-5D38-450F-BA25-FED83FBE758B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndIncluding\":\"8.0.12\",\"matchCriteriaId\":\"106FA614-55B8-4D90-B654-47EE199E7CC1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4F86C3C-B99C-44C6-97D7-163DC3F59687\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F96E3779-F56A-45FF-BB3D-4980527D721E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CF73560-2F5B-4723-A8A1-9AADBB3ADA00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11\",\"matchCriteriaId\":\"F72F611A-26E5-4CC7-888E-96AD158D7C68\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.0.0\",\"versionEndExcluding\":\"10.13.0\",\"matchCriteriaId\":\"66F7B69D-5362-4E15-9FFE-8F3E87738920\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11.0\",\"matchCriteriaId\":\"11895153-2FE5-4D73-B7FC-182FA280BA36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4\",\"matchCriteriaId\":\"49790D15-2446-4138-B1FA-6C806587C5A1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*\",\"versionStartIncluding\":\"7.3\",\"matchCriteriaId\":\"BD075607-09B7-493E-8611-66D041FFDA62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*\",\"versionStartIncluding\":\"9.5\",\"matchCriteriaId\":\"0CB28AF5-5AF0-4475-A7B6-12E1795FFDCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1BE6C1F-2565-4E97-92AA-16563E5660A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5735E553-9731-4AAC-BCFF-989377F817B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.5.0\",\"versionEndExcluding\":\"5.5.62\",\"matchCriteriaId\":\"C87F0098-C8A6-4815-A14C-19B49A508FF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.0.0\",\"versionEndExcluding\":\"10.0.37\",\"matchCriteriaId\":\"C38B1059-586F-4930-8F86-52A7B19AB54F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.1.0\",\"versionEndExcluding\":\"10.1.37\",\"matchCriteriaId\":\"2AC91A04-1CD8-4863-874E-C9B3C4922998\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.2.0\",\"versionEndExcluding\":\"10.2.19\",\"matchCriteriaId\":\"8451F87D-FA6E-403E-8865-CE6DE7F3FE62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.3.0\",\"versionEndExcluding\":\"10.3.11\",\"matchCriteriaId\":\"BDD53EB8-46EF-49F4-9C75-610A3B466203\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"4.0.0\",\"versionEndIncluding\":\"4.1.2\",\"matchCriteriaId\":\"A47FC4F7-1F77-4314-B4B3-3C5D8E335379\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\",\"versionStartIncluding\":\"4.2.0\",\"versionEndExcluding\":\"4.8.2\",\"matchCriteriaId\":\"BCA5DE0E-A10C-42A1-BFE3-1FED2C3171AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndIncluding\":\"6.8.1\",\"matchCriteriaId\":\"D107EC29-67E7-40C3-8E5A-324C9105C5E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\",\"versionStartIncluding\":\"6.9.0\",\"versionEndExcluding\":\"6.10.2\",\"matchCriteriaId\":\"ED1F2BAC-47F9-49C9-93FE-20EDD46CDF86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.6.0\",\"matchCriteriaId\":\"7F49B5A3-6516-46A2-884B-4D6657C188AE\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-12/msg00127.html\",\"source\":\"security@opentext.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2017-01/msg00050.html\",\"source\":\"security@opentext.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2017-01/msg00053.html\",\"source\":\"security@opentext.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/12/05/21\",\"source\":\"security@opentext.com\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html\",\"source\":\"security@opentext.com\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"security@opentext.com\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\",\"source\":\"security@opentext.com\"},{\"url\":\"http://www.securityfocus.com/bid/95131\",\"source\":\"security@opentext.com\"},{\"url\":\"http://www.securitytracker.com/id/1039427\",\"source\":\"security@opentext.com\"},{\"url\":\"http://www.securitytracker.com/id/1041888\",\"source\":\"security@opentext.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1220\",\"source\":\"security@opentext.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1221\",\"source\":\"security@opentext.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1222\",\"source\":\"security@opentext.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2999\",\"source\":\"security@opentext.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3046\",\"source\":\"security@opentext.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3047\",\"source\":\"security@opentext.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3453\",\"source\":\"security@opentext.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1402351\",\"source\":\"security@opentext.com\"},{\"url\":\"https://github.com/madler/zlib/commit/d1d577490c15a0c6862473d7576352a9f18ef811\",\"source\":\"security@opentext.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/03/msg00027.html\",\"source\":\"security@opentext.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/01/msg00030.html\",\"source\":\"security@opentext.com\"},{\"url\":\"https://security.gentoo.org/glsa/201701-56\",\"source\":\"security@opentext.com\"},{\"url\":\"https://security.gentoo.org/glsa/202007-54\",\"source\":\"security@opentext.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20181018-0002/\",\"source\":\"security@opentext.com\"},{\"url\":\"https://support.apple.com/HT208112\",\"source\":\"security@opentext.com\"},{\"url\":\"https://support.apple.com/HT208113\",\"source\":\"security@opentext.com\"},{\"url\":\"https://support.apple.com/HT208115\",\"source\":\"security@opentext.com\"},{\"url\":\"https://support.apple.com/HT208144\",\"source\":\"security@opentext.com\"},{\"url\":\"https://usn.ubuntu.com/4246-1/\",\"source\":\"security@opentext.com\"},{\"url\":\"https://usn.ubuntu.com/4292-1/\",\"source\":\"security@opentext.com\"},{\"url\":\"https://wiki.mozilla.org/MOSS/Secure_Open_Source/Completed#zlib\",\"source\":\"security@opentext.com\"},{\"url\":\"https://wiki.mozilla.org/images/0/09/Zlib-report.pdf\",\"source\":\"security@opentext.com\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"security@opentext.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-12/msg00127.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2017-01/msg00050.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2017-01/msg00053.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/12/05/21\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/95131\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1039427\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1041888\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1220\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1221\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1222\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2999\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3046\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3047\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:3453\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1402351\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/madler/zlib/commit/d1d577490c15a0c6862473d7576352a9f18ef811\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/03/msg00027.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/01/msg00030.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201701-56\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202007-54\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20181018-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/HT208112\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/HT208113\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/HT208115\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/HT208144\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4246-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4292-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://wiki.mozilla.org/MOSS/Secure_Open_Source/Completed#zlib\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://wiki.mozilla.org/images/0/09/Zlib-report.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
RHSA-2017:1222
Vulnerability from csaf_redhat
Published
2017-05-10 12:43
Modified
2025-02-02 20:04
Summary
Red Hat Security Advisory: java-1.6.0-ibm security update
Notes
Topic
An update for java-1.6.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 6 to version 6 SR16-FP45.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page, listed in the References section. (CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-1289, CVE-2017-3509, CVE-2017-3533, CVE-2017-3539, CVE-2017-3544)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for java-1.6.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 6 to version 6 SR16-FP45.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java Security Vulnerabilities page, listed in the References section. (CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-1289, CVE-2017-3509, CVE-2017-3533, CVE-2017-3539, CVE-2017-3544)", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2017:1222", "url": "https://access.redhat.com/errata/RHSA-2017:1222" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/", "url": "https://developer.ibm.com/javasdk/support/security-vulnerabilities/" }, { "category": "external", "summary": "1402345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402345" }, { "category": "external", "summary": "1402346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402346" }, { "category": "external", "summary": "1402348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402348" }, { "category": "external", "summary": "1402351", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "category": "external", "summary": "1443052", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443052" }, { "category": "external", "summary": "1443068", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443068" }, { "category": "external", "summary": "1443083", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443083" }, { "category": "external", "summary": "1443097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443097" }, { "category": "external", "summary": "1449603", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449603" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1222.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-ibm security update", "tracking": { "current_release_date": "2025-02-02T20:04:41+00:00", "generator": { "date": "2025-02-02T20:04:41+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.6" } }, "id": "RHSA-2017:1222", "initial_release_date": "2017-05-10T12:43:49+00:00", "revision_history": [ { "date": "2017-05-10T12:43:49+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-05-10T12:43:49+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-02-02T20:04:41+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.16.45-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.16.45-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.16.45-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.16.45-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_id": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.16.45-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_id": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.16.45-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_id": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-plugin@1.6.0.16.45-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.16.45-1jpp.1.el6_9?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.16.45-1jpp.1.el6_9?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.16.45-1jpp.1.el6_9?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.16.45-1jpp.1.el6_9?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_id": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.16.45-1jpp.1.el6_9?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_id": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.16.45-1jpp.1.el6_9?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_id": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-plugin@1.6.0.16.45-1jpp.1.el6_9?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.16.45-1jpp.1.el6_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.16.45-1jpp.1.el6_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.16.45-1jpp.1.el6_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_id": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.16.45-1jpp.1.el6_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_id": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.16.45-1jpp.1.el6_9?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_id": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-jdbc@1.6.0.16.45-1jpp.1.el6_9?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_id": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-devel@1.6.0.16.45-1jpp.1.el6_9?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_id": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-demo@1.6.0.16.45-1jpp.1.el6_9?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_id": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-javacomm@1.6.0.16.45-1jpp.1.el6_9?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_id": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm@1.6.0.16.45-1jpp.1.el6_9?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_id": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-ibm-src@1.6.0.16.45-1jpp.1.el6_9?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.9.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2016-9840", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402345" } ], "notes": [ { "category": "description", "text": "inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Out-of-bounds pointer arithmetic in inftrees.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9840" }, { "category": "external", "summary": "RHBZ#1402345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402345" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9840", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9840" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9840", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9840" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Out-of-bounds pointer arithmetic in inftrees.c" }, { "cve": "CVE-2016-9841", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402346" } ], "notes": [ { "category": "description", "text": "inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Out-of-bounds pointer arithmetic in inffast.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9841" }, { "category": "external", "summary": "RHBZ#1402346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9841", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9841" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9841", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9841" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Out-of-bounds pointer arithmetic in inffast.c" }, { "cve": "CVE-2016-9842", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402348" } ], "notes": [ { "category": "description", "text": "The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Undefined left shift of negative number", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9842" }, { "category": "external", "summary": "RHBZ#1402348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402348" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9842", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9842" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9842", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9842" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Undefined left shift of negative number" }, { "cve": "CVE-2016-9843", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402351" } ], "notes": [ { "category": "description", "text": "The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Big-endian out-of-bounds pointer", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9843" }, { "category": "external", "summary": "RHBZ#1402351", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9843", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9843" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9843", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9843" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Big-endian out-of-bounds pointer" }, { "cve": "CVE-2017-1289", "cwe": { "id": "CWE-611", "name": "Improper Restriction of XML External Entity Reference" }, "discovery_date": "2017-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1449603" } ], "notes": [ { "category": "description", "text": "IBM SDK, Java Technology Edition is vulnerable XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 125150.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: XML External Entity Injection (XXE) error when processing XML data", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-1289" }, { "category": "external", "summary": "RHBZ#1449603", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449603" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1289", "url": "https://www.cve.org/CVERecord?id=CVE-2017-1289" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1289", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1289" } ], "release_date": "2017-05-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: XML External Entity Injection (XXE) error when processing XML data" }, { "cve": "CVE-2017-3509", "cwe": { "id": "CWE-287", "name": "Improper Authentication" }, "discovery_date": "2017-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1443052" } ], "notes": [ { "category": "description", "text": "It was discovered that the HTTP client implementation in the Networking component of OpenJDK could cache and re-use an NTLM authenticated connection in a different security context. A remote attacker could possibly use this flaw to make a Java application perform HTTP requests authenticated with credentials of a different user.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: improper re-use of NTLM authenticated connections (Networking, 8163520)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-3509" }, { "category": "external", "summary": "RHBZ#1443052", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443052" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-3509", "url": "https://www.cve.org/CVERecord?id=CVE-2017-3509" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3509", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3509" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA" } ], "release_date": "2017-04-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: improper re-use of NTLM authenticated connections (Networking, 8163520)" }, { "cve": "CVE-2017-3533", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "discovery_date": "2017-02-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1443083" } ], "notes": [ { "category": "description", "text": "A newline injection flaw was discovered in the FTP client implementation in the Networking component in OpenJDK. A remote attacker could possibly use this flaw to manipulate FTP connections established by a Java application.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: newline injection in the FTP client (Networking, 8170222)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-3533" }, { "category": "external", "summary": "RHBZ#1443083", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443083" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-3533", "url": "https://www.cve.org/CVERecord?id=CVE-2017-3533" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3533", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3533" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA" } ], "release_date": "2017-02-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: newline injection in the FTP client (Networking, 8170222)" }, { "cve": "CVE-2017-3539", "cwe": { "id": "CWE-327", "name": "Use of a Broken or Risky Cryptographic Algorithm" }, "discovery_date": "2017-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1443097" } ], "notes": [ { "category": "description", "text": "It was discovered that the Security component of OpenJDK did not allow users to restrict the set of algorithms allowed for Jar integrity verification. This flaw could allow an attacker to modify content of the Jar file that used weak signing key or hash algorithm.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MD5 allowed for jar verification (Security, 8171121)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-3539" }, { "category": "external", "summary": "RHBZ#1443097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443097" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-3539", "url": "https://www.cve.org/CVERecord?id=CVE-2017-3539" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3539", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3539" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA" } ], "release_date": "2017-04-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.1, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MD5 allowed for jar verification (Security, 8171121)" }, { "cve": "CVE-2017-3544", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "discovery_date": "2017-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1443068" } ], "notes": [ { "category": "description", "text": "A newline injection flaw was discovered in the SMTP client implementation in the Networking component in OpenJDK. A remote attacker could possibly use this flaw to manipulate SMTP connections established by a Java application.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: newline injection in the SMTP client (Networking, 8171533)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-3544" }, { "category": "external", "summary": "RHBZ#1443068", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443068" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-3544", "url": "https://www.cve.org/CVERecord?id=CVE-2017-3544" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3544", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3544" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixJAVA" } ], "release_date": "2017-04-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-05-10T12:43:49+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:1222" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.0" }, "products": [ "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Client-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6ComputeNode-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Server-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-demo-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-devel-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-javacomm-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-jdbc-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-plugin-1:1.6.0.16.45-1jpp.1.el6_9.x86_64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.i686", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.ppc64", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.s390x", "6Workstation-Supplementary-6.9.z:java-1.6.0-ibm-src-1:1.6.0.16.45-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: newline injection in the SMTP client (Networking, 8171533)" } ] }
rhsa-2017_3047
Vulnerability from csaf_redhat
Published
2017-10-24 12:09
Modified
2024-11-14 21:45
Summary
Red Hat Security Advisory: java-1.6.0-sun security update
Notes
Topic
An update for java-1.6.0-sun is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
This update upgrades Oracle Java SE 6 to version 6 Update 171.
Security Fix(es):
* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-10274, CVE-2017-10281, CVE-2017-10285, CVE-2017-10293, CVE-2017-10295, CVE-2017-10345, CVE-2017-10346, CVE-2017-10347, CVE-2017-10348, CVE-2017-10349, CVE-2017-10355, CVE-2017-10356, CVE-2017-10357, CVE-2017-10388)
Note: Starting with this update, Java web browser plugin and Java Web Start application are no longer included with Oracle Java SE 6. Refer to the Releases Notes and the Oracle Java SE Support Roadmap pages linked to in the References section for further information about this change.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for java-1.6.0-sun is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.\n\nThis update upgrades Oracle Java SE 6 to version 6 Update 171.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page listed in the References section. (CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-10274, CVE-2017-10281, CVE-2017-10285, CVE-2017-10293, CVE-2017-10295, CVE-2017-10345, CVE-2017-10346, CVE-2017-10347, CVE-2017-10348, CVE-2017-10349, CVE-2017-10355, CVE-2017-10356, CVE-2017-10357, CVE-2017-10388)\n\nNote: Starting with this update, Java web browser plugin and Java Web Start application are no longer included with Oracle Java SE 6. Refer to the Releases Notes and the Oracle Java SE Support Roadmap pages linked to in the References section for further information about this change.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2017:3047", "url": "https://access.redhat.com/errata/RHSA-2017:3047" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixJAVA" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/java/javase/documentation/overview-156328.html#R160_171", "url": "http://www.oracle.com/technetwork/java/javase/documentation/overview-156328.html#R160_171" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/java/javase/eol-135779.html", "url": "http://www.oracle.com/technetwork/java/javase/eol-135779.html" }, { "category": "external", "summary": "1402345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402345" }, { "category": "external", "summary": "1402346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402346" }, { "category": "external", "summary": "1402348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402348" }, { "category": "external", "summary": "1402351", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "category": "external", "summary": "1501868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501868" }, { "category": "external", "summary": "1501873", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501873" }, { "category": "external", "summary": "1502038", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502038" }, { "category": "external", "summary": "1502053", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502053" }, { "category": "external", "summary": "1502611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502611" }, { "category": "external", "summary": "1502614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502614" }, { "category": "external", "summary": "1502629", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502629" }, { "category": "external", "summary": "1502632", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502632" }, { "category": "external", "summary": "1502649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502649" }, { "category": "external", "summary": "1502687", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502687" }, { "category": "external", "summary": "1502858", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502858" }, { "category": "external", "summary": "1502869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502869" }, { "category": "external", "summary": "1503169", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503169" }, { "category": "external", "summary": "1503320", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503320" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3047.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-sun security update", "tracking": { "current_release_date": "2024-11-14T21:45:47+00:00", "generator": { "date": "2024-11-14T21:45:47+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2017:3047", "initial_release_date": "2017-10-24T12:09:09+00:00", "revision_history": [ { "date": "2017-10-24T12:09:09+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-14T15:18:13+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T21:45:47+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:7" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.171-1jpp.4.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.171-1jpp.4.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.171-1jpp.4.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.171-1jpp.4.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.171-1jpp.4.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.171-1jpp.4.el6?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.171-1jpp.4.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.171-1jpp.4.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.171-1jpp.4.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.171-1jpp.4.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.171-1jpp.4.el7?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.171-1jpp.4.el7?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "product_id": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.171-1jpp.4.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "product": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "product_id": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.171-1jpp.4.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.171-1jpp.4.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "product_id": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.171-1jpp.4.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.171-1jpp.4.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "product_id": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.171-1jpp.4.el6?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "product_id": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.171-1jpp.4.el7?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "product": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "product_id": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.171-1jpp.4.el7?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Client-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Compute Node (v. 7)", "product_id": "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7ComputeNode-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Server-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "relates_to_product_reference": "7Workstation-OracleJava-7.4.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2016-9840", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402345" } ], "notes": [ { "category": "description", "text": "inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Out-of-bounds pointer arithmetic in inftrees.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9840" }, { "category": "external", "summary": "RHBZ#1402345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402345" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9840", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9840" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9840", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9840" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Out-of-bounds pointer arithmetic in inftrees.c" }, { "cve": "CVE-2016-9841", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402346" } ], "notes": [ { "category": "description", "text": "inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Out-of-bounds pointer arithmetic in inffast.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9841" }, { "category": "external", "summary": "RHBZ#1402346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9841", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9841" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9841", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9841" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Out-of-bounds pointer arithmetic in inffast.c" }, { "cve": "CVE-2016-9842", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402348" } ], "notes": [ { "category": "description", "text": "The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Undefined left shift of negative number", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9842" }, { "category": "external", "summary": "RHBZ#1402348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402348" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9842", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9842" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9842", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9842" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Undefined left shift of negative number" }, { "cve": "CVE-2016-9843", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402351" } ], "notes": [ { "category": "description", "text": "The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Big-endian out-of-bounds pointer", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9843" }, { "category": "external", "summary": "RHBZ#1402351", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9843", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9843" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9843", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9843" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Big-endian out-of-bounds pointer" }, { "cve": "CVE-2017-10274", "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502053" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Smart Card IO). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE accessible data as well as unauthorized access to critical data or complete access to all Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CardImpl incorrect state handling (Smart Card IO, 8169026)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10274" }, { "category": "external", "summary": "RHBZ#1502053", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502053" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10274", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10274" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10274", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10274" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: CardImpl incorrect state handling (Smart Card IO, 8169026)" }, { "cve": "CVE-2017-10281", "cwe": { "id": "CWE-770", "name": "Allocation of Resources Without Limits or Throttling" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502649" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: multiple unbounded memory allocations in deserialization (Serialization, 8174109)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10281" }, { "category": "external", "summary": "RHBZ#1502649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502649" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10281", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10281" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10281", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10281" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: multiple unbounded memory allocations in deserialization (Serialization, 8174109)" }, { "cve": "CVE-2017-10285", "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1501868" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 9.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect privilege use when handling unreferenced objects (RMI, 8174966)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10285" }, { "category": "external", "summary": "RHBZ#1501868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501868" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10285", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10285" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10285", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10285" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: incorrect privilege use when handling unreferenced objects (RMI, 8174966)" }, { "cve": "CVE-2017-10293", "discovery_date": "2017-10-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1503320" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Javadoc). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE accessible data as well as unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u171, 7u161, 8u151, and 9.0.1 (Javadoc)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10293" }, { "category": "external", "summary": "RHBZ#1503320", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503320" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10293", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10293" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10293", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10293" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixJAVA" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u171, 7u161, 8u151, and 9.0.1 (Javadoc)" }, { "cve": "CVE-2017-10295", "cwe": { "id": "CWE-113", "name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502687" } ], "notes": [ { "category": "description", "text": "It was found that the HttpURLConnection and HttpsURLConnection classes in the Networking component of OpenJDK failed to check for newline characters embedded in URLs. An attacker able to make a Java application perform an HTTP request using an attacker provided URL could possibly inject additional headers into the request.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: HTTP client insufficient check for newline in URLs (Networking, 8176751)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10295" }, { "category": "external", "summary": "RHBZ#1502687", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502687" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10295", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10295" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10295", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10295" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: HTTP client insufficient check for newline in URLs (Networking, 8176751)" }, { "cve": "CVE-2017-10345", "cwe": { "id": "CWE-770", "name": "Allocation of Resources Without Limits or Throttling" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502858" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.1 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: unbounded resource use in JceKeyStore deserialization (Serialization, 8181370)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10345" }, { "category": "external", "summary": "RHBZ#1502858", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502858" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10345", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10345" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10345", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10345" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 3.1, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: unbounded resource use in JceKeyStore deserialization (Serialization, 8181370)" }, { "cve": "CVE-2017-10346", "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1501873" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 9.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient loader constraints checks for invokespecial (Hotspot, 8180711)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10346" }, { "category": "external", "summary": "RHBZ#1501873", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501873" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10346", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10346" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10346", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10346" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient loader constraints checks for invokespecial (Hotspot, 8180711)" }, { "cve": "CVE-2017-10347", "cwe": { "id": "CWE-770", "name": "Allocation of Resources Without Limits or Throttling" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502632" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: unbounded memory allocation in SimpleTimeZone deserialization (Serialization, 8181323)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10347" }, { "category": "external", "summary": "RHBZ#1502632", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502632" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10347", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10347" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10347", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10347" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: unbounded memory allocation in SimpleTimeZone deserialization (Serialization, 8181323)" }, { "cve": "CVE-2017-10348", "cwe": { "id": "CWE-770", "name": "Allocation of Resources Without Limits or Throttling" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502629" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: multiple unbounded memory allocations in deserialization (Libraries, 8181432)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10348" }, { "category": "external", "summary": "RHBZ#1502629", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502629" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10348", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10348" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10348", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10348" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: multiple unbounded memory allocations in deserialization (Libraries, 8181432)" }, { "cve": "CVE-2017-10349", "cwe": { "id": "CWE-770", "name": "Allocation of Resources Without Limits or Throttling" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502611" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: unbounded memory allocation in PredicatedNodeTest deserialization (JAXP, 8181327)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10349" }, { "category": "external", "summary": "RHBZ#1502611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502611" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10349", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10349" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10349", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10349" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: unbounded memory allocation in PredicatedNodeTest deserialization (JAXP, 8181327)" }, { "cve": "CVE-2017-10355", "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502869" } ], "notes": [ { "category": "description", "text": "It was found that the FtpClient implementation in the Networking component of OpenJDK did not set connect and read timeouts by default. A malicious FTP server or a man-in-the-middle attacker could use this flaw to block execution of a Java application connecting to an FTP server.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: no default network operations timeouts in FtpClient (Networking, 8181612)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10355" }, { "category": "external", "summary": "RHBZ#1502869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502869" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10355", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10355" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10355", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10355" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: no default network operations timeouts in FtpClient (Networking, 8181612)" }, { "cve": "CVE-2017-10356", "cwe": { "id": "CWE-327", "name": "Use of a Broken or Risky Cryptographic Algorithm" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1503169" } ], "notes": [ { "category": "description", "text": "It was discovered that the Security component of OpenJDK generated weak password-based encryption keys used to protect private keys stored in key stores. This made it easier to perform password guessing attacks to decrypt stored keys if an attacker could gain access to a key store.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: weak protection of key stores against brute forcing (Security, 8181692)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10356" }, { "category": "external", "summary": "RHBZ#1503169", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503169" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10356", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10356" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10356", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10356" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: weak protection of key stores against brute forcing (Security, 8181692)" }, { "cve": "CVE-2017-10357", "cwe": { "id": "CWE-770", "name": "Allocation of Resources Without Limits or Throttling" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502614" } ], "notes": [ { "category": "description", "text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: unbounded memory allocation in ObjectInputStream deserialization (Serialization, 8181597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10357" }, { "category": "external", "summary": "RHBZ#1502614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502614" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10357", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10357" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10357", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10357" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: unbounded memory allocation in ObjectInputStream deserialization (Serialization, 8181597)" }, { "cve": "CVE-2017-10388", "cwe": { "id": "CWE-345", "name": "Insufficient Verification of Data Authenticity" }, "discovery_date": "2017-10-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1502038" } ], "notes": [ { "category": "description", "text": "It was discovered that the Kerberos client implementation in the Libraries component of OpenJDK used the sname field from the plain text part rather than encrypted part of the KDC reply message. A man-in-the-middle attacker could possibly use this flaw to impersonate Kerberos services to Java applications acting as Kerberos clients.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: use of unprotected sname in Kerberos client (Libraries, 8178794)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2017-10388" }, { "category": "external", "summary": "RHBZ#1502038", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502038" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2017-10388", "url": "https://www.cve.org/CVERecord?id=CVE-2017-10388" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10388", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10388" } ], "release_date": "2017-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-10-24T12:09:09+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of Oracle Java must be restarted for this update to take effect.", "product_ids": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3047" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N", "version": "3.0" }, "products": [ "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Client-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6ComputeNode-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Server-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el6.x86_64", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.i686", "6Workstation-OracleJava-6.9.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el6.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Client-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7ComputeNode-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Server-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-demo-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.i686", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-devel-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-jdbc-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-plugin-1:1.6.0.171-1jpp.4.el7.x86_64", "7Workstation-OracleJava-7.4.Z:java-1.6.0-sun-src-1:1.6.0.171-1jpp.4.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: use of unprotected sname in Kerberos client (Libraries, 8178794)" } ] }
RHSA-2017:3453
Vulnerability from csaf_redhat
Published
2017-12-13 16:48
Modified
2025-02-02 20:05
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM
Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP5.
Security Fix(es):
* This update fixes multiple vulnerabilities in the IBM Java Runtime
Environment and the IBM Java Software Development Kit. Further information
about these flaws can be found on the IBM Java Security Vulnerabilities
page listed in the References section. (CVE-2016-9840, CVE-2016-9841,
CVE-2016-9842, CVE-2016-9843, CVE-2016-10165, CVE-2017-1289, CVE-2017-3509,
CVE-2017-3511, CVE-2017-3533, CVE-2017-3539, CVE-2017-3544, CVE-2017-10053,
CVE-2017-10067, CVE-2017-10078, CVE-2017-10087, CVE-2017-10089,
CVE-2017-10090, CVE-2017-10096, CVE-2017-10101, CVE-2017-10102,
CVE-2017-10105, CVE-2017-10107, CVE-2017-10108, CVE-2017-10109,
CVE-2017-10110, CVE-2017-10115, CVE-2017-10116, CVE-2017-10243,
CVE-2017-10281, CVE-2017-10285, CVE-2017-10295, CVE-2017-10309,
CVE-2017-10345, CVE-2017-10346, CVE-2017-10347, CVE-2017-10348,
CVE-2017-10349, CVE-2017-10350, CVE-2017-10355, CVE-2017-10356,
CVE-2017-10357, CVE-2017-10388)
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
For this update to take effect, Red Hat Satellite must be restarted
("/usr/sbin/rhn-satellite restart"). All running instances of IBM Java must
be restarted for this update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM\nJava Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP5.\n\nSecurity Fix(es):\n\n* This update fixes multiple vulnerabilities in the IBM Java Runtime\nEnvironment and the IBM Java Software Development Kit. Further information\nabout these flaws can be found on the IBM Java Security Vulnerabilities\npage listed in the References section. (CVE-2016-9840, CVE-2016-9841,\nCVE-2016-9842, CVE-2016-9843, CVE-2016-10165, CVE-2017-1289, CVE-2017-3509,\nCVE-2017-3511, CVE-2017-3533, CVE-2017-3539, CVE-2017-3544, CVE-2017-10053,\nCVE-2017-10067, CVE-2017-10078, CVE-2017-10087, CVE-2017-10089,\nCVE-2017-10090, CVE-2017-10096, CVE-2017-10101, CVE-2017-10102,\nCVE-2017-10105, CVE-2017-10107, CVE-2017-10108, CVE-2017-10109,\nCVE-2017-10110, CVE-2017-10115, CVE-2017-10116, CVE-2017-10243,\nCVE-2017-10281, CVE-2017-10285, CVE-2017-10295, CVE-2017-10309,\nCVE-2017-10345, CVE-2017-10346, CVE-2017-10347, CVE-2017-10348,\nCVE-2017-10349, CVE-2017-10350, CVE-2017-10355, CVE-2017-10356,\nCVE-2017-10357, CVE-2017-10388)\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted\n(\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must\nbe restarted for this update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2017:3453", "url": "https://access.redhat.com/errata/RHSA-2017:3453" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "1367357", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367357" }, { "category": "external", "summary": "1402345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402345" }, { "category": "external", "summary": "1402346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402346" }, { "category": "external", "summary": "1402348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402348" }, { "category": "external", "summary": "1402351", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "category": "external", "summary": "1443007", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443007" }, { "category": "external", "summary": "1443052", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443052" }, { "category": "external", "summary": "1443068", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443068" }, { "category": "external", "summary": "1443083", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443083" }, { "category": "external", "summary": "1443097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443097" }, { "category": "external", "summary": "1449603", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449603" }, { "category": "external", "summary": "1471266", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471266" }, { "category": "external", "summary": "1471270", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471270" }, { "category": "external", "summary": "1471517", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471517" }, { "category": "external", "summary": "1471521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471521" }, { "category": "external", "summary": "1471523", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471523" }, { "category": "external", "summary": "1471527", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471527" }, { "category": "external", "summary": "1471528", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471528" }, { "category": "external", "summary": "1471535", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471535" }, { "category": "external", "summary": "1471670", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471670" }, { "category": "external", "summary": "1471738", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471738" }, { "category": "external", "summary": "1471851", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471851" }, { "category": "external", "summary": "1471888", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471888" }, { "category": "external", "summary": "1471889", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471889" }, { "category": "external", "summary": "1471898", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471898" }, { "category": "external", "summary": "1472345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472345" }, { "category": "external", "summary": "1472666", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472666" }, { "category": "external", "summary": "1472667", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472667" }, { "category": "external", "summary": "1501868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501868" }, { "category": "external", "summary": "1501873", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501873" }, { "category": "external", "summary": "1502038", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502038" }, { "category": "external", "summary": "1502611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502611" }, { "category": "external", "summary": "1502614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502614" }, { "category": "external", "summary": "1502629", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502629" }, { "category": "external", "summary": "1502632", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502632" }, { "category": "external", "summary": "1502640", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502640" }, { "category": "external", "summary": "1502649", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502649" }, { "category": "external", "summary": "1502687", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502687" }, { "category": "external", "summary": "1502858", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502858" }, { "category": "external", "summary": "1502869", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1502869" }, { "category": "external", "summary": "1503169", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503169" }, { "category": "external", "summary": "1503319", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1503319" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3453.json" } ], "title": "Red Hat Security Advisory: java-1.8.0-ibm security update", "tracking": { "current_release_date": "2025-02-02T20:05:04+00:00", "generator": { "date": "2025-02-02T20:05:04+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.6" } }, "id": "RHSA-2017:3453", "initial_release_date": "2017-12-13T16:48:15+00:00", "revision_history": [ { "date": "2017-12-13T16:48:15+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-13T16:48:15+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-02-02T20:05:04+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Satellite 5.8 (RHEL v.6)", "product": { "name": "Red Hat Satellite 5.8 (RHEL v.6)", "product_id": "6Server-Satellite58", "product_identification_helper": { "cpe": "cpe:/a:redhat:network_satellite:5.8::el6" } } }, { "category": "product_name", "name": "Red Hat Satellite 5.8 ELS (RHEL v.6)", "product": { "name": "Red Hat Satellite 5.8 ELS (RHEL v.6)", "product_id": "6Server-Satellite58-ELS", "product_identification_helper": { "cpe": "cpe:/a:redhat:network_satellite:5.8::el6" } } } ], "category": "product_family", "name": "Red Hat Satellite" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "product_id": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.5-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "product": { "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.5-1jpp.1.el6_9?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "product": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "product_id": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.5-1jpp.1.el6_9?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "product": { "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.5-1jpp.1.el6_9?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "product": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "product_id": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.5-1jpp.1.el6_9?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)", "product_id": "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Satellite58-ELS" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)", "product_id": "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src" }, "product_reference": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "relates_to_product_reference": "6Server-Satellite58-ELS" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)", "product_id": "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Satellite58-ELS" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)", "product_id": "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Satellite58-ELS" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)", "product_id": "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Satellite58-ELS" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)", "product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Satellite58" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src as a component of Red Hat Satellite 5.8 (RHEL v.6)", "product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src" }, "product_reference": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "relates_to_product_reference": "6Server-Satellite58" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)", "product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Satellite58" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)", "product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x" }, "product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "relates_to_product_reference": "6Server-Satellite58" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)", "product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" }, "product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "relates_to_product_reference": "6Server-Satellite58" } ] }, "vulnerabilities": [ { "cve": "CVE-2016-9840", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402345" } ], "notes": [ { "category": "description", "text": "inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Out-of-bounds pointer arithmetic in inftrees.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9840" }, { "category": "external", "summary": "RHBZ#1402345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402345" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9840", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9840" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9840", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9840" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-12-13T16:48:15+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3453" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Out-of-bounds pointer arithmetic in inftrees.c" }, { "cve": "CVE-2016-9841", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402346" } ], "notes": [ { "category": "description", "text": "inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Out-of-bounds pointer arithmetic in inffast.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9841" }, { "category": "external", "summary": "RHBZ#1402346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9841", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9841" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9841", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9841" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-12-13T16:48:15+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3453" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Out-of-bounds pointer arithmetic in inffast.c" }, { "cve": "CVE-2016-9842", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402348" } ], "notes": [ { "category": "description", "text": "The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Undefined left shift of negative number", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9842" }, { "category": "external", "summary": "RHBZ#1402348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402348" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9842", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9842" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9842", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9842" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-12-13T16:48:15+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2017:3453" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "zlib: Undefined left shift of negative number" }, { "cve": "CVE-2016-9843", "discovery_date": "2016-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1402351" } ], "notes": [ { "category": "description", "text": "The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.", "title": "Vulnerability description" }, { "category": "summary", "text": "zlib: Big-endian out-of-bounds pointer", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.src", "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.x86_64", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.5-1jpp.1.el6_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2016-9843" }, { "category": "external", "summary": "RHBZ#1402351", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402351" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2016-9843", "url": "https://www.cve.org/CVERecord?id=CVE-2016-9843" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-9843", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9843" }, { "category": "external", "summary": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7", "url": "https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7" }, { "category": "external", "summary": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf", "url": "https://wiki.mozilla.org/images/0/09/Zlib-report.pdf" } ], "release_date": "2016-09-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2017-12-13T16:48:15+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.", "product_ids": [ "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.el6_9.s390x", "6Server-Satellite58-ELS:java-1.8.0-ibm-1:1.8.0.5.5-1jpp.1.e