Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

openSUSE 11.4: 2012:0309-1 Important Java-1_6_0-Openjdk Security Fix

opensuse
Calendar Grey February 27, 2012
Scroller Opensuse
This crucial announcement for Fedora resolves several vulnerabilities in python3 to improve overall security.
An update that fixes 9 vulnerabilities is now available.

Description

java-1_6_0-openjdk was updated to the b24 release, fixing

multiple security issues:

* Security fixes

- S7082299, CVE-2011-3571: Fix inAtomicReferenceArray

- S7088367, CVE-2011-3563: Fix issues in java sound

- S7110683, CVE-2012-0502: Issues with some

KeyboardFocusManager method

- S7110687, CVE-2012-0503: Issues with TimeZone class

- S7110700, CVE-2012-0505: Enhance exception throwing

mechanism in ObjectStreamClass

- S7110704, CVE-2012-0506: Issues with some method in corba

- S7112642, CVE-2012-0497: Incorrect checking for graphics

rendering object

- S7118283, CVE-2012-0501: Better input parameter checking

in zip file processing

- S7126960, CVE-2011-5035: (httpserver) Add property to

limit number of request headers to the HTTP Server

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 11.4:

zypper in -t patch java-1_6_0-openjdk-5856

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 11.4 (i586 x86_64):

java-1_6_0-openjdk-1.6.0.0_b24.1.11.1-0.3.2

java-1_6_0-openjdk-devel-1.6.0.0_b24.1.11.1-0.3.2

- openSUSE 11.4 (i586):

java-1_6_0-openjdk-demo-1.6.0.0_b24.1.11.1-0.3.2

java-1_6_0-openjdk-javadoc-1.6.0.0_b24.1.11.1-0.3.2

java-1_6_0-openjdk-src-1.6.0.0_b24.1.11.1-0.3.2

References

https://www.suse.com/security/cve/CVE-2011-3563.html

https://www.suse.com/security/cve/CVE-2011-3571.html

https://www.suse.com/security/cve/CVE-2011-5035.html

https://www.suse.com/security/cve/CVE-2012-0497.html

https://www.suse.com/security/cve/CVE-2012-0501.html

https://www.suse.com/security/cve/CVE-2012-0502.html

https://www.suse.com/security/cve/CVE-2012-0503.html

https://www.suse.com/security/cve/CVE-2012-0505.html

https://www.suse.com/security/cve/CVE-2012-0506.html

--

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2012:0309-1
Rating: important
Affected Products: openSUSE 11.4

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.