SUSE 11-SP3:2016:1379-1 Important: Java-1_6_0-ibm Buffer Overflow

suse

May 21, 2016

An update that fixes 10 vulnerabilities is now available

Summary

This IBM Java 1.6.0 SR16 FP25 release fixes the following issues: Security issues fixed: - CVE-2016-0264: buffer overflow vulnerability in the IBM JVM (bsc#977648) - CVE-2016-0363: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix (bsc#977650) - CVE-2016-0376: insecure deserialization in CORBA, incorrect CVE-2013-5456 fix (bsc#977646) - The following CVEs got also fixed during this update. (bsc#979252) CVE-2016-3443, CVE-2016-0687, CVE-2016-0686, CVE-2016-3427, CVE-2016-3449, CVE-2016-3422, CVE-2016-3426 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 5: zypper in -t patch sleclo50sp3-java-1_6_0-ibm-12572=1 - SUSE Manager Proxy 2.1:

Topics Covered

security advisory security issue buffer overflow important suse linux linux enterprise java patch

References

#977646 #977648 #977650 #979252

Cross- CVE-2016-0264 CVE-2016-0363 CVE-2016-0376

CVE-2016-0686 CVE-2016-0687 CVE-2016-3422

CVE-2016-3426 CVE-2016-3427 CVE-2016-3443

CVE-2016-3449

Affected Products:

SUSE OpenStack Cloud 5

SUSE Manager Proxy 2.1

SUSE Manager 2.1

SUSE Linux Enterprise Server 11-SP3-LTSS

SUSE Linux Enterprise Server 11-SP2-LTSS

https://www.suse.com/security/cve/CVE-2016-0264.html

https://www.suse.com/security/cve/CVE-2016-0363.html

https://www.suse.com/security/cve/CVE-2016-0376.html

https://www.suse.com/security/cve/CVE-2016-0686.html

https://www.suse.com/security/cve/CVE-2016-0687.html

https://www.suse.com/security/cve/CVE-2016-3422.html

https://www.suse.com/security/cve/CVE-2016-3426.html

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2016:1379-1

Rating: important

Topics Covered

security advisory security issue buffer overflow important suse linux linux enterprise java patch

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 11-SP3:2016:1379-1 Important: Java-1_6_0-ibm Buffer Overflow

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 11-SP3:2016:1379-1 Important: Java-1_6_0-ibm Buffer Overflow

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!