Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
The IBM 1.5.0 Java release includes the IBM Java 2 Runtime Environment and
the IBM Java 2 Software Development Kit.
A flaw was found in the Java Management Extensions (JMX) management agent.
When local monitoring is enabled, remote attackers could use this flaw to
perform illegal operations. (CVE-2008-3103)
All users of java-1.5.0-ibm are advised to upgrade to these updated
packages containing the IBM 1.5.0 SR8a Java release, which resolves this issue.
https://www.cve.org/CVERecord?id=CVE-2008-3103 https://access.redhat.com/security/updates/classification#moderate
Red Hat Enterprise Linux AS version 4 Extras:
i386:
java-1.5.0-ibm-1.5.0.8-1jpp.2.el4.i386.rpm
java-1.5.0-ibm-demo-1.5.0.8-1jpp.2.el4.i386.rpm
java-1.5.0-ibm-devel-1.5.0.8-1jpp.2.el4.i386.rpm
java-1.5.0-ibm-javacomm-1.5.0.8-1jpp.2.el4.i386.rpm
java-1.5.0-ibm-jdbc-1.5.0.8-1jpp.2.el4.i386.rpm
java-1.5.0-ibm-plugin-1.5.0.8-1jpp.2.el4.i386.rpm
java-1.5.0-ibm-src-1.5.0.8-1jpp.2.el4.i386.rpm
ppc:
java-1.5.0-ibm-1.5.0.8-1jpp.2.el4.ppc.rpm
java-1.5.0-ibm-demo-1.5.0.8-1jpp.2.el4.ppc.rpm
java-1.5.0-ibm-devel-1.5.0.8-1jpp.2.el4.ppc.rpm
java-1.5.0-ibm-javacomm-1.5.0.8-1jpp.2.el4.ppc.rpm
java-1.5.0-ibm-jdbc-1.5.0.8-1jpp.2.el4.ppc.rpm
java-1.5.0-ibm-plugin-1.5.0.8-1jpp.2.el4.ppc.rpm
java-1.5.0-ibm-src-1.5.0.8-1jpp.2.el4.ppc.rpm
s390:
java-1.5.0-ibm-1.5.0.8-1jpp.2.el4.s390.rpm
java-1.5.0-ibm-demo-1.5.0.8-1jpp.2.el4.s390.rpm
java-1.5.0-ibm-devel-1.5.0.8-1jpp.2.el4.s390.rpm
java-1.5.0-ibm-jdbc-1.5.0.8-1jpp.2.el4.s390.rpm
java-1.5.0-ibm-src-1.5.0.8-1jpp.2.el4.s390.rpm
s390x:
java-1.5.0-ibm-1.5.0.8-1jpp.2.el4.s390x.rpm
java-1.5.0-ibm-demo-1.5.0.8-1jpp.2.el4.s390x.rpm
java-1.5.0-ibm-devel-1.5.0.8-1jpp.2.el4.s390x.rpm
java-1.5.0-ibm-src-1.5.0.8-1jpp.2.el4.s390x.rpm
x86_64:
java-1.5.0-ibm-1.5.0.8-1jpp.2.el4.x86_64.rpm
Read the Full Advisory
Updated java-1.5.0-ibm packages that fix a security issue are now available
for Red Hat Enterprise Linux 4 Extras and 5 Supplementary.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Red Hat Enterprise Linux AS version 4 Extras - i386, ppc, s390, s390x, x86_64
Red Hat Desktop version 4 Extras - i386, x86_64
Red Hat Enterprise Linux ES version 4 Extras - i386, x86_64
Red Hat Enterprise Linux WS version 4 Extras - i386, x86_64
RHEL Desktop Supplementary (v. 5 client) - i386, x86_64
RHEL Supplementary (v. 5 server) - i386, ppc, s390x, x86_64
452659 - CVE-2008-3103 OpenJDK JMX allows illegal operations with local monitoring (6332953)
Get the latest Linux and open source security news straight to your inbox.