SUSE Security Update: Security update for java-1_7_0-openjdk
______________________________________________________________________________

Announcement ID:    SUSE-SU-2015:0336-1
Rating:             important
References:         #914041 
Cross-References:   CVE-2014-3566 CVE-2014-6549 CVE-2014-6585
                    CVE-2014-6587 CVE-2014-6591 CVE-2014-6593
                    CVE-2014-6601 CVE-2015-0383 CVE-2015-0395
                    CVE-2015-0400 CVE-2015-0403 CVE-2015-0406
                    CVE-2015-0407 CVE-2015-0408 CVE-2015-0410
                    CVE-2015-0412 CVE-2015-0413 CVE-2015-0421
                    CVE-2015-0437
Affected Products:
                    SUSE Linux Enterprise Desktop 11 SP3
______________________________________________________________________________

   An update that fixes 19 vulnerabilities is now available.
   It includes one version update.

Description:


   java-1_7_0-openjdk was updated to fix 19 security issues.

   Details are available at
   https://www.oracle.com/security-alerts/cpujan2015.html
   ppendixJAVA
   

   Security Issues:

       * CVE-2014-6601
         
       * CVE-2015-0412
         
       * CVE-2014-6549
         
       * CVE-2015-0408
         
       * CVE-2015-0395
         
       * CVE-2015-0437
         
       * CVE-2015-0403
         
       * CVE-2015-0421
         
       * CVE-2015-0406
         
       * CVE-2015-0383
         
       * CVE-2015-0400
         
       * CVE-2015-0407
         
       * CVE-2015-0410
         
       * CVE-2014-6587
         
       * CVE-2014-3566
         
       * CVE-2014-6593
         
       * CVE-2014-6585
         
       * CVE-2014-6591
         
       * CVE-2015-0413
         


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Desktop 11 SP3:

      zypper in -t patch sledsp3-java-1_7_0-openjdk=10286

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise Desktop 11 SP3 (i586 x86_64) [New Version: 1.7.0.75]:

      java-1_7_0-openjdk-1.7.0.75-0.7.1
      java-1_7_0-openjdk-demo-1.7.0.75-0.7.1
      java-1_7_0-openjdk-devel-1.7.0.75-0.7.1


References:

   https://www.suse.com/security/cve/CVE-2014-3566.html
   https://www.suse.com/security/cve/CVE-2014-6549.html
   https://www.suse.com/security/cve/CVE-2014-6585.html
   https://www.suse.com/security/cve/CVE-2014-6587.html
   https://www.suse.com/security/cve/CVE-2014-6591.html
   https://www.suse.com/security/cve/CVE-2014-6593.html
   https://www.suse.com/security/cve/CVE-2014-6601.html
   https://www.suse.com/security/cve/CVE-2015-0383.html
   https://www.suse.com/security/cve/CVE-2015-0395.html
   https://www.suse.com/security/cve/CVE-2015-0400.html
   https://www.suse.com/security/cve/CVE-2015-0403.html
   https://www.suse.com/security/cve/CVE-2015-0406.html
   https://www.suse.com/security/cve/CVE-2015-0407.html
   https://www.suse.com/security/cve/CVE-2015-0408.html
   https://www.suse.com/security/cve/CVE-2015-0410.html
   https://www.suse.com/security/cve/CVE-2015-0412.html
   https://www.suse.com/security/cve/CVE-2015-0413.html
   https://www.suse.com/security/cve/CVE-2015-0421.html
   https://www.suse.com/security/cve/CVE-2015-0437.html
   https://bugzilla.suse.com/914041
   https://scc.suse.com:443/patches/