Debian: DSA-2987-2: openjdk-7 regression update

Date 31 Aug 2014

Category Debian Linux Distribution - Security Advisories

153

Posted By LinuxSecurity Advisories

The previous security update for OpenJDK 7, DSA-2987-1, introduced a regression due to an overly strict bytecode verifier. As a result, legitimate bytecode which is produced by some non-Java languages would no longer run.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------
Debian Security Advisory DSA-2987-2                   This email address is being protected from spambots. You need JavaScript enabled to view it.
https://www.debian.org/security/                            Florian Weimer
August 31, 2014                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-7

The previous security update for OpenJDK 7, DSA-2987-1, introduced a
regression due to an overly strict bytecode verifier.  As a result,
legitimate bytecode which is produced by some non-Java languages would
no longer run.

For the stable distribution (wheezy), this problem has been fixed in
version 7u65-2.5.1-5~deb7u1.

We recommend that you upgrade your openjdk-7 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.