ID CVE-2017-3544
Summary Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded: 8u121; JRockit: R28.3.13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SMTP to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded, JRockit accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:jdk:1.6.0:update_141:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.6.0:update_141:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.7.0:update_131:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.7.0:update_131:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.8.0:update_121:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.8.0:update_121:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.6.0:update_141:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.6.0:update_141:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update_131:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update_131:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.8.0:update_121:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.8.0:update_121:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r28.3.13:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.3.13:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:icedtea:1.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:icedtea:1.5.2:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:4.4.4:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:4.4.4:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:5.0.2:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:5.0.2:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:5.1.1:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:5.1.1:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*
  • cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:P/A:N
redhat via4
advisories
  • bugzilla
    id 1443252
    title CVE-2017-3526 OpenJDK: incomplete XML parse tree size enforcement (JAXP, 8169011)
    oval
    AND
    • OR
      • comment Red Hat Enterprise Linux 7 Client is installed
        oval oval:com.redhat.rhba:tst:20150364001
      • comment Red Hat Enterprise Linux 7 Server is installed
        oval oval:com.redhat.rhba:tst:20150364002
      • comment Red Hat Enterprise Linux 7 Workstation is installed
        oval oval:com.redhat.rhba:tst:20150364003
      • comment Red Hat Enterprise Linux 7 ComputeNode is installed
        oval oval:com.redhat.rhba:tst:20150364004
    • OR
      • AND
        • comment java-1.8.0-openjdk is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108025
        • comment java-1.8.0-openjdk is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636006
      • AND
        • comment java-1.8.0-openjdk-accessibility is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108023
        • comment java-1.8.0-openjdk-accessibility is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20150809023
      • AND
        • comment java-1.8.0-openjdk-accessibility-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108027
        • comment java-1.8.0-openjdk-accessibility-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20160049016
      • AND
        • comment java-1.8.0-openjdk-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108017
        • comment java-1.8.0-openjdk-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919012
      • AND
        • comment java-1.8.0-openjdk-demo is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108007
        • comment java-1.8.0-openjdk-demo is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636012
      • AND
        • comment java-1.8.0-openjdk-demo-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108009
        • comment java-1.8.0-openjdk-demo-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919018
      • AND
        • comment java-1.8.0-openjdk-devel is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108021
        • comment java-1.8.0-openjdk-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636016
      • AND
        • comment java-1.8.0-openjdk-devel-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108015
        • comment java-1.8.0-openjdk-devel-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919016
      • AND
        • comment java-1.8.0-openjdk-headless is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108005
        • comment java-1.8.0-openjdk-headless is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636008
      • AND
        • comment java-1.8.0-openjdk-headless-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108011
        • comment java-1.8.0-openjdk-headless-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919006
      • AND
        • comment java-1.8.0-openjdk-javadoc is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108035
        • comment java-1.8.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636014
      • AND
        • comment java-1.8.0-openjdk-javadoc-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108031
        • comment java-1.8.0-openjdk-javadoc-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919028
      • AND
        • comment java-1.8.0-openjdk-javadoc-zip is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108033
        • comment java-1.8.0-openjdk-javadoc-zip is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20170180051
      • AND
        • comment java-1.8.0-openjdk-javadoc-zip-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108029
        • comment java-1.8.0-openjdk-javadoc-zip-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20170180048
      • AND
        • comment java-1.8.0-openjdk-src is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108019
        • comment java-1.8.0-openjdk-src is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636010
      • AND
        • comment java-1.8.0-openjdk-src-debug is earlier than 1:1.8.0.131-2.b11.el7_3
          oval oval:com.redhat.rhsa:tst:20171108013
        • comment java-1.8.0-openjdk-src-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919022
    rhsa
    id RHSA-2017:1108
    released 2017-04-20
    severity Moderate
    title RHSA-2017:1108: java-1.8.0-openjdk security and bug fix update (Moderate)
  • bugzilla
    id 1443252
    title CVE-2017-3526 OpenJDK: incomplete XML parse tree size enforcement (JAXP, 8169011)
    oval
    AND
    • OR
      • comment Red Hat Enterprise Linux 6 Client is installed
        oval oval:com.redhat.rhba:tst:20111656001
      • comment Red Hat Enterprise Linux 6 Server is installed
        oval oval:com.redhat.rhba:tst:20111656002
      • comment Red Hat Enterprise Linux 6 Workstation is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • comment Red Hat Enterprise Linux 6 ComputeNode is installed
        oval oval:com.redhat.rhba:tst:20111656004
    • OR
      • AND
        • comment java-1.8.0-openjdk is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109017
        • comment java-1.8.0-openjdk is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636006
      • AND
        • comment java-1.8.0-openjdk-debug is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109013
        • comment java-1.8.0-openjdk-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919012
      • AND
        • comment java-1.8.0-openjdk-demo is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109005
        • comment java-1.8.0-openjdk-demo is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636012
      • AND
        • comment java-1.8.0-openjdk-demo-debug is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109023
        • comment java-1.8.0-openjdk-demo-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919018
      • AND
        • comment java-1.8.0-openjdk-devel is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109007
        • comment java-1.8.0-openjdk-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636016
      • AND
        • comment java-1.8.0-openjdk-devel-debug is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109011
        • comment java-1.8.0-openjdk-devel-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919016
      • AND
        • comment java-1.8.0-openjdk-headless is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109021
        • comment java-1.8.0-openjdk-headless is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636008
      • AND
        • comment java-1.8.0-openjdk-headless-debug is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109009
        • comment java-1.8.0-openjdk-headless-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919006
      • AND
        • comment java-1.8.0-openjdk-javadoc is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109025
        • comment java-1.8.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636014
      • AND
        • comment java-1.8.0-openjdk-javadoc-debug is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109027
        • comment java-1.8.0-openjdk-javadoc-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919028
      • AND
        • comment java-1.8.0-openjdk-src is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109019
        • comment java-1.8.0-openjdk-src is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20141636010
      • AND
        • comment java-1.8.0-openjdk-src-debug is earlier than 1:1.8.0.131-0.b11.el6_9
          oval oval:com.redhat.rhsa:tst:20171109015
        • comment java-1.8.0-openjdk-src-debug is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20151919022
    rhsa
    id RHSA-2017:1109
    released 2017-04-20
    severity Moderate
    title RHSA-2017:1109: java-1.8.0-openjdk security update (Moderate)
  • bugzilla
    id 1443252
    title CVE-2017-3526 OpenJDK: incomplete XML parse tree size enforcement (JAXP, 8169011)
    oval
    OR
    • AND
      • OR
        • comment Red Hat Enterprise Linux 7 Client is installed
          oval oval:com.redhat.rhba:tst:20150364001
        • comment Red Hat Enterprise Linux 7 Server is installed
          oval oval:com.redhat.rhba:tst:20150364002
        • comment Red Hat Enterprise Linux 7 Workstation is installed
          oval oval:com.redhat.rhba:tst:20150364003
        • comment Red Hat Enterprise Linux 7 ComputeNode is installed
          oval oval:com.redhat.rhba:tst:20150364004
      • OR
        • AND
          • comment java-1.7.0-openjdk is earlier than 1:1.7.0.141-2.6.10.1.el7_3
            oval oval:com.redhat.rhsa:tst:20171204011
          • comment java-1.7.0-openjdk is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009006
        • AND
          • comment java-1.7.0-openjdk-accessibility is earlier than 1:1.7.0.141-2.6.10.1.el7_3
            oval oval:com.redhat.rhsa:tst:20171204007
          • comment java-1.7.0-openjdk-accessibility is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140675018
        • AND
          • comment java-1.7.0-openjdk-demo is earlier than 1:1.7.0.141-2.6.10.1.el7_3
            oval oval:com.redhat.rhsa:tst:20171204015
          • comment java-1.7.0-openjdk-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009010
        • AND
          • comment java-1.7.0-openjdk-devel is earlier than 1:1.7.0.141-2.6.10.1.el7_3
            oval oval:com.redhat.rhsa:tst:20171204009
          • comment java-1.7.0-openjdk-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009008
        • AND
          • comment java-1.7.0-openjdk-headless is earlier than 1:1.7.0.141-2.6.10.1.el7_3
            oval oval:com.redhat.rhsa:tst:20171204005
          • comment java-1.7.0-openjdk-headless is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140675012
        • AND
          • comment java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.141-2.6.10.1.el7_3
            oval oval:com.redhat.rhsa:tst:20171204017
          • comment java-1.7.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009012
        • AND
          • comment java-1.7.0-openjdk-src is earlier than 1:1.7.0.141-2.6.10.1.el7_3
            oval oval:com.redhat.rhsa:tst:20171204013
          • comment java-1.7.0-openjdk-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009014
    • AND
      • OR
        • comment Red Hat Enterprise Linux 6 Client is installed
          oval oval:com.redhat.rhba:tst:20111656001
        • comment Red Hat Enterprise Linux 6 Server is installed
          oval oval:com.redhat.rhba:tst:20111656002
        • comment Red Hat Enterprise Linux 6 Workstation is installed
          oval oval:com.redhat.rhba:tst:20111656003
        • comment Red Hat Enterprise Linux 6 ComputeNode is installed
          oval oval:com.redhat.rhba:tst:20111656004
      • OR
        • AND
          • comment java-1.7.0-openjdk is earlier than 1:1.7.0.141-2.6.10.1.el6_9
            oval oval:com.redhat.rhsa:tst:20171204025
          • comment java-1.7.0-openjdk is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009006
        • AND
          • comment java-1.7.0-openjdk-demo is earlier than 1:1.7.0.141-2.6.10.1.el6_9
            oval oval:com.redhat.rhsa:tst:20171204023
          • comment java-1.7.0-openjdk-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009010
        • AND
          • comment java-1.7.0-openjdk-devel is earlier than 1:1.7.0.141-2.6.10.1.el6_9
            oval oval:com.redhat.rhsa:tst:20171204026
          • comment java-1.7.0-openjdk-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009008
        • AND
          • comment java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.141-2.6.10.1.el6_9
            oval oval:com.redhat.rhsa:tst:20171204027
          • comment java-1.7.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009012
        • AND
          • comment java-1.7.0-openjdk-src is earlier than 1:1.7.0.141-2.6.10.1.el6_9
            oval oval:com.redhat.rhsa:tst:20171204024
          • comment java-1.7.0-openjdk-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009014
    rhsa
    id RHSA-2017:1204
    released 2017-05-09
    severity Moderate
    title RHSA-2017:1204: java-1.7.0-openjdk security update (Moderate)
  • rhsa
    id RHSA-2017:1117
  • rhsa
    id RHSA-2017:1118
  • rhsa
    id RHSA-2017:1119
  • rhsa
    id RHSA-2017:1220
  • rhsa
    id RHSA-2017:1221
  • rhsa
    id RHSA-2017:1222
  • rhsa
    id RHSA-2017:3453
rpms
  • java-1.8.0-openjdk-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-accessibility-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-accessibility-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-demo-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-demo-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-devel-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-devel-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-headless-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-headless-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-javadoc-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-javadoc-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-javadoc-zip-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-javadoc-zip-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-src-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-src-debug-1:1.8.0.131-2.b11.el7_3
  • java-1.8.0-openjdk-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-debug-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-demo-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-demo-debug-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-devel-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-devel-debug-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-headless-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-headless-debug-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-javadoc-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-javadoc-debug-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-src-1:1.8.0.131-0.b11.el6_9
  • java-1.8.0-openjdk-src-debug-1:1.8.0.131-0.b11.el6_9
  • java-1.7.0-openjdk-1:1.7.0.141-2.6.10.1.el7_3
  • java-1.7.0-openjdk-accessibility-1:1.7.0.141-2.6.10.1.el7_3
  • java-1.7.0-openjdk-demo-1:1.7.0.141-2.6.10.1.el7_3
  • java-1.7.0-openjdk-devel-1:1.7.0.141-2.6.10.1.el7_3
  • java-1.7.0-openjdk-headless-1:1.7.0.141-2.6.10.1.el7_3
  • java-1.7.0-openjdk-javadoc-1:1.7.0.141-2.6.10.1.el7_3
  • java-1.7.0-openjdk-src-1:1.7.0.141-2.6.10.1.el7_3
  • java-1.7.0-openjdk-1:1.7.0.141-2.6.10.1.el6_9
  • java-1.7.0-openjdk-demo-1:1.7.0.141-2.6.10.1.el6_9
  • java-1.7.0-openjdk-devel-1:1.7.0.141-2.6.10.1.el6_9
  • java-1.7.0-openjdk-javadoc-1:1.7.0.141-2.6.10.1.el6_9
  • java-1.7.0-openjdk-src-1:1.7.0.141-2.6.10.1.el6_9
refmap via4
bid 97745
confirm
debian DSA-3858
gentoo
  • GLSA-201705-03
  • GLSA-201707-01
sectrack 1038286
Last major update 03-10-2019 - 00:03
Published 24-04-2017 - 19:59
Back to Top