Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 522
Alerts This Week
Warning Icon 1 522

SUSE: 2017:0490-1 Important: Java 1_7_0-OpenJDK Network Access

suse
Calendar Grey February 17, 2017
Dist Suse Esm H88
SUSE has released a Security Update for java-1_8_0-openjdk addressing several vulnerabilities rated as critical across various distributions.
An update that fixes 15 vulnerabilities is now available

Summary

This update for java-1_7_0-openjdk fixes the following issues: - Oracle Critical Patch Update of January 2017 to OpenJDK 7u131 (bsc#1020905): * Security Fixes - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution - S8156804, CVE-2017-3241: Better constraint checking - S8158406: Limited Parameter Processing - S8158997: JNDI Protocols Switch - S8159507: RuntimeVisibleAnnotation validation - S8161218: Better bytecode loading - S8161743, CVE-2017-3252: Provide proper login context - S8162577: Standardize logging levels - S8162973: Better component components - S8164143, CVE-2017-3260: Improve components for menu items - S8164147, CVE-2017-3261: Improve streaming socket output

References

#1020905

Cross- CVE-2016-2183 CVE-2016-5546 CVE-2016-5547

CVE-2016-5548 CVE-2016-5549 CVE-2016-5552

CVE-2017-3231 CVE-2017-3241 CVE-2017-3252

CVE-2017-3253 CVE-2017-3259 CVE-2017-3260

CVE-2017-3261 CVE-2017-3272 CVE-2017-3289

Affected Products:

SUSE Linux Enterprise Server for SAP 12

SUSE Linux Enterprise Server for Raspberry Pi 12-SP2

SUSE Linux Enterprise Server 12-SP2

SUSE Linux Enterprise Server 12-SP1

SUSE Linux Enterprise Server 12-LTSS

SUSE Linux Enterprise Desktop 12-SP2

SUSE Linux Enterprise Desktop 12-SP1

https://www.suse.com/security/cve/CVE-2016-2183.html

https://www.suse.com/security/cve/CVE-2016-5546.html

https://www.suse.com/security/cve/CVE-2016-5547.html

https://www.suse.com/security/cve/CVE-2016-5548.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:0490-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.