SciLinux: Critical Update for java-1.8.0-openjdk on SL7.x

Critical Advisory SLSA-2016:0513-1 for Java 1.8 Type Safety Issue on SL7.x

Critical: java-1.8.0-openjdk security update

Date: Fri, 25 Mar 2016 15:59:16 -0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Critical: java-1.8.0-openjdk on SL7.x x86_64
MIME-Version: 1.0
Message-ID: <20160325155916.22524.90367@slpackages.fnal.gov>

Synopsis: Critical: java-1.8.0-openjdk security update
Advisory ID: SLSA-2016:0513-1
Issue Date: 2016-03-25
CVE Numbers: CVE-2016-0636
--

Security Fix(es):

* An improper type safety check was discovered in the Hotspot component.
An untrusted Java application or applet could use this flaw to bypass Java
Sandbox restrictions. (CVE-2016-0636)
--

SL7
 x86_64
 java-1.8.0-openjdk-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-debuginfo-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-headless-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-accessibility-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-accessibility-debug-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-debug-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-demo-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-demo-debug-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-devel-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-devel-debug-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-headless-debug-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-src-1.8.0.77-0.b03.el7_2.x86_64.rpm
 java-1.8.0-openjdk-src-debug-1.8.0.77-0.b03.el7_2.x86_64.rpm
 noarch
 java-1.8.0-openjdk-javadoc-1.8.0.77-0.b03.el7_2.noarch.rpm
 java-1.8.0-openjdk-javadoc-debug-1.8.0.77-0.b03.el7_2.noarch.rpm

- Scientific Linux Development Team