Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryupdateimportant

Fedora Linux 38 jdk-openjdk-32 Major Security Patch RLSA-2026-0931

Important: java-25-openjdk security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:0933", "synopsis": "Important: java-25-openjdk security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for java-25-openjdk.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The OpenJDK 25 packages provide the OpenJDK 25 Java Runtime Environment and the OpenJDK 25 Java Software Development Kit.\n\nSecurity Fix(es):\n\n* JDK: Improve JMX connections (CVE-2026-21925)\n\n* JDK: Improve HttpServer Request handling (CVE-2026-21933)\n\n* JDK: Enhance Certificate Checking (CVE-2026-21945)\n\n* libpng: LIBPNG buffer overflow (CVE-2025-64720)\n\n* libpng: LIBPNG heap buffer overflow (CVE-2025-65018)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2416904", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2416904", "description": ""}, {"ticket": "2416907", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2416907", "description": ""}, {"ticket": "2429924", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2429924", "description": ""}, {"ticket": "2429926", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2429926", "description": ""}, {"ticket": "2429927", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2429927", "description": ""}], "cves": [{"name": "CVE-2025-64720", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-64720", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H", "cvss3BaseScore": "7.1", "cwe":"CWE-125"}, {"name": "CVE-2025-65018", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-65018", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H", "cvss3BaseScore": "7.1", "cwe": "CWE-787"}, {"name": "CVE-2026-21925", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21925", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N", "cvss3BaseScore": "4.8", "cwe": "CWE-322"}, {"name": "CVE-2026-21933", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21933", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-93"}, {"name": "CVE-2026-21945", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21945", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-295"}], "references": [], "publishedAt": "2026-02-13T09:06:49.393244Z", "rpms": {"Rocky Linux 9": {"nvras": ["java-25-openjdk-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-1:25.0.2.0.10-1.el9.src.rpm", "java-25-openjdk-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm","java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-demo-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-demo-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-demo-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-demo-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-devel-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-devel-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-devel-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-devel-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-headless-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-headless-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-headless-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-headless-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.x86_64.rpm","java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-src-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-src-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-src-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-src-1:25.0.2.0.10-1.el9.x86_64.rpm", "java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.aarch64.rpm", "java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.ppc64le.rpm", "java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.s390x.rpm", "java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. An important security update for java-25-openjdk on Rocky Linux 9 addressing several security fixes and improvements.. Rocky Linux Security Java OpenJDK Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 13, 2026 Important Rocky Linux
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentooarbitrary execution

Gentoo: GLSA-202209-15 Normal: Oracle JDK/JRE Code Execution Risks

Multiple vulnerabilities have been found in Oracle JDK and JRE, the worst of which could result in the arbitrary execution of code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202209-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Oracle JDK/JRE: Multiple vulnerabilities Date: September 25, 2022 Bugs: #732630, #717638 ID: 202209-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been found in Oracle JDK and JRE, the worst of which could result in the arbitrary execution of code. Background ========= Java Platform, Standard Edition (Java SE) lets you develop and deploy Java applications on desktops and servers, as well as in today's demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today's applications require. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-java/oracle-jdk-bin

Calendar 2 Sep 25, 2022 Gentoo
Banner 3 1028x280 1708121785 1771599793
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoosoftware issue

Gentoo: GLSA-201908-10 Normal: Oracle JDK/JRE Multiple Issues

Multiple vulnerabilities have been found in Oracle’s JDK and JRE software suites.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201908-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Oracle JDK/JRE: Multiple vulnerabilities Date: August 15, 2019 Bugs: #668948, #691336 ID: 201908-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been found in Oracle’s JDK and JRE software suites. Background ========= Java Platform, Standard Edition (Java SE) lets you develop and deploy Java applications on desktops and servers, as well as in today’s demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today’s applications require. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-java/oracle-jdk-bin < 1.8.0.202:1.8 > = 1.8.0.202:1.8 2 dev-java/oracle-jre-bin < 1.8.0.202:1.8 > = 1.8.0.202:1.8 ------------------------------------------------------------------- 2 affected packages Description ========== Multiple vulnerabilities have been discovered in Oracle’s JDK and JRE software suites. Please review the CVE identifiers referenced below for details. Impact ===== Please review the referenced CVE identifiers for details. Workaround ========= There is no known workaround at this time. Resolution ========= All Oracle JDK bin users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jdk-bin-1.8.0.202:1.8" All Oracle JRE bin users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v "> =dev-java/oracle-jre-bin-1.8.0.202:1.8" References ========= [ 1 ] CVE-2018-13785 https://nvd.nist.gov/vuln/detail/CVE-2018-13785 [ 2 ] CVE-2018-3136 https://nvd.nist.gov/vuln/detail/CVE-2018-3136 [ 3 ] CVE-2018-3139 https://nvd.nist.gov/vuln/detail/CVE-2018-3139 [ 4 ] CVE-2018-3149 https://nvd.nist.gov/vuln/detail/CVE-2018-3149 [ 5 ] CVE-2018-3150 https://nvd.nist.gov/vuln/detail/CVE-2018-3150 [ 6 ] CVE-2018-3157 https://nvd.nist.gov/vuln/detail/CVE-2018-3157 [ 7 ] CVE-2018-3169 https://nvd.nist.gov/vuln/detail/CVE-2018-3169 [ 8 ] CVE-2018-3180 https://nvd.nist.gov/vuln/detail/CVE-2018-3180 [ 9 ] CVE-2018-3183 https://nvd.nist.gov/vuln/detail/CVE-2018-3183 [ 10 ] CVE-2018-3209 https://nvd.nist.gov/vuln/detail/CVE-2018-3209 [ 11 ] CVE-2018-3211 https://nvd.nist.gov/vuln/detail/CVE-2018-3211 [ 12 ] CVE-2018-3214 https://nvd.nist.gov/vuln/detail/CVE-2018-3214 [ 13 ] CVE-2019-2602 https://nvd.nist.gov/vuln/detail/CVE-2019-2602 [ 14 ] CVE-2019-2684 https://nvd.nist.gov/vuln/detail/CVE-2019-2684 [ 15 ] CVE-2019-2697 https://nvd.nist.gov/vuln/detail/CVE-2019-2697 [ 16 ] CVE-2019-2698 https://nvd.nist.gov/vuln/detail/CVE-2019-2698 [ 17 ] CVE-2019-2699 https://nvd.nist.gov/vuln/detail/CVE-2019-2699 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201908-10 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2019 Gentoo Foundation, Inc; referenced text belongs to itsowner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Oracle JDK/JRE bulletin reveals several security flaws. Immediate patches advised to safeguard systems.. gentoo security advisory, oracle jdk, oracle jre vulnerabilities, software security. . LinuxSecurity.com Team

Calendar 2 Aug 15, 2019 Gentoo
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorysecurity issuecritical

Critical Security Update for jdk-1.6.0 on Scientific Linux System

Critical: java-1.6.0-sun security update. Date: Tue, 12 Feb 2013 13:53:44 -0600 Reply-To: Pat Riehecky Sender: Security Errata for Scientific Linux From: Pat Riehecky Organization: Fermilab Subject: Security ERRATA Critical: jdk-1.6.0 on SL 5.0 - 5.8 (i386 x86_64) Synopsis: Critical: java-1.6.0-sun security update Issue Date: 2013-02-05 CVE Numbers: CVE-2013-0440 CVE-2013-1475 CVE-2013-0424 CVE-2013-0435 CVE-2013-1478 CVE-2013-0442 CVE-2013-0445 CVE-2013-1480 CVE-2013-0450 CVE-2012-1541 CVE-2013-0446 CVE-2012-3342 CVE-2013-0419 CVE-2013-0423 CVE-2013-0351 CVE-2013-0430 CVE-2013-1473 CVE-2013-0438 CVE-2013-0428 CVE-2013-0432 CVE-2012-3213 CVE-2013-1481 CVE-2013-0409 CVE-2013-0443 CVE-2013-0425 CVE-2013-0426 CVE-2013-0434 CVE-2013-0427 CVE-2013-0433 CVE-2013-1476 CVE-2013-0441 CVE-2013-0429 -- Multiple fixes. (CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409, CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426, CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446, CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478, CVE-2013-1480, CVE-2013-1481) As a reminder, the closed source Java6 packages are not present in Scientific Linux 5.9. Public updates to the closed source package are being discontinued by upstream. Scientific Linux 6 has never included the closed source Java packages. https://www.oracle.com/technetwork/java/eol-135779.html All running instances of Java must be restarted for the update to take effect. -- SL5 x86_64 java-1.6.0-sun-compat-1.6.0.39-3.sl5.jpp.x86_64.rpm java-1.6.0-sun-compat-1.6.0.39-3.sl5.jpp.i586.rpm jdk-1.6.0_39-fcs.x86_64.rpm jdk-1.6.0_39-fcs.i586.rpm i386 java-1.6.0-sun-compat-1.6.0.39-3.sl5.jpp.i586.rpm jdk-1.6.0_39-fcs.i586.rpm - Scientific Linux Development Team . Essential patch forjava-1.6.0 security vulnerabilities: numerous corrections in Scientific Linux, impacting x86_64 architecture.. Scientific Linux, Java Security, Critical Update, Java 1.6 Security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 12, 2013 Critical Scientific Linux
Banner 3 1028x280 1708121785 1771599793
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoocode execution

Gentoo: GLSA-200911-02 Normal: Sun JDK/JRE Remote Code Execution

Multiple vulnerabilites in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200911-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Sun JDK/JRE: Multiple vulnerabilites Date: November 17, 2009 Bugs: #182824, #231337, #250012, #263810, #280409, #291817 ID: 200911-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilites in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code. Background ========= The Sun Java Development Kit (JDK) and the Sun Java Runtime Environment (JRE) provide the Sun Java platform. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sun-jre-bin < 1.6.0.17 *> = 1.5.0.22 > = 1.6.0.17 2 sun-jdk < 1.6.0.17 *> = 1.5.0.22 > = 1.6.0.17 3 blackdown-jre = 1.6.0.17 ------------------------------------------------------------------- NOTE: Certain packages are still vulnerable. Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers. ------------------------------------------------------------------- 5 affected packages on all of their supported architectures. ------------------------------------------------------------------- Description ========== Multiple vulnerabilites have been reported in the Sun Java implementation. Please review the CVE identifiers referenced below and the associated Sun Alerts for details. Impact ===== A remote attacker could entice a user to open a specially crafted JAR archive, applet, or Java Web Start application, possibly resulting in the execution of arbitrary code with the privileges of the user running the application. Furthermore, a remote attacker could cause a Denial of Service affecting multiple services via several vectors, disclose information and memory contents, write or execute local files, conduct session hijacking attacks via GIFAR files, steal cookies, bypass the same-origin policy, load untrusted JAR files, establish network connections to arbitrary hosts and posts via several vectors, modify the list of supported graphics configurations, bypass HMAC-based authentication systems, escalate privileges via several vectors and cause applet code to be executed with older, possibly vulnerable versions of the JRE. NOTE: Some vulnerabilities require a trusted environment, user interaction, a DNS Man-in-the-Middle or Cross-Site-Scripting attack. Workaround ========= There is no known workaround at this time. Resolution ========= All Sun JRE 1.5.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose =dev-java/sun-jre-bin-1.5.0.22 All Sun JRE 1.6.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose =dev-java/sun-jre-bin-1.6.0.17 All Sun JDK 1.5.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose =dev-java/sun-jdk-1.5.0.22 All Sun JDK 1.6.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose =dev-java/sun-jdk-1.6.0.17 All users of the precompiled 32bit Sun JRE 1.5.x should upgrade to the latest version: # emerge--sync # emerge --ask --oneshot --verbose =app-emulation/emul-linux-x86-java-1.5.0.22 All users of the precompiled 32bit Sun JRE 1.6.x should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose =app-emulation/emul-linux-x86-java-1.6.0.17 All Sun JRE 1.4.x, Sun JDK 1.4.x, Blackdown JRE, Blackdown JDK and precompiled 32bit Sun JRE 1.4.x users are strongly advised to unmerge Java 1.4: # emerge --unmerge =app-emulation/emul-linux-x86-java-1.4* # emerge --unmerge =dev-java/sun-jre-bin-1.4* # emerge --unmerge =dev-java/sun-jdk-1.4* # emerge --unmerge dev-java/blackdown-jdk # emerge --unmerge dev-java/blackdown-jre Gentoo is ceasing support for the 1.4 generation of the Sun Java Platform in accordance with upstream. All 1.4 JRE and JDK versions are masked and will be removed shortly. References ========= [ 1 ] CVE-2008-2086 https://www.cve.org/CVERecord?id=CVE-2008-2086 [ 2 ] CVE-2008-3103 https://www.cve.org/CVERecord?id=CVE-2008-3103 [ 3 ] CVE-2008-3104 https://www.cve.org/CVERecord?id=CVE-2008-3104 [ 4 ] CVE-2008-3105 https://www.cve.org/CVERecord?id=CVE-2008-3105 [ 5 ] CVE-2008-3106 https://www.cve.org/CVERecord?id=CVE-2008-3106 [ 6 ] CVE-2008-3107 https://www.cve.org/CVERecord?id=CVE-2008-3107 [ 7 ] CVE-2008-3108 https://www.cve.org/CVERecord?id=CVE-2008-3108 [ 8 ] CVE-2008-3109 https://www.cve.org/CVERecord?id=CVE-2008-3109 [ 9 ] CVE-2008-3110 https://www.cve.org/CVERecord?id=CVE-2008-3110 [ 10 ] CVE-2008-3111 https://www.cve.org/CVERecord?id=CVE-2008-3111 [ 11 ] CVE-2008-3112 https://www.cve.org/CVERecord?id=CVE-2008-3112 [ 12 ] CVE-2008-3113 https://www.cve.org/CVERecord?id=CVE-2008-3113 [ 13 ] CVE-2008-3114 https://www.cve.org/CVERecord?id=CVE-2008-3114 [ 14 ] CVE-2008-3115 https://www.cve.org/CVERecord?id=CVE-2008-3115 [ 15 ] CVE-2008-5339 https://www.cve.org/CVERecord?id=CVE-2008-5339 [ 16 ] CVE-2008-5340 https://www.cve.org/CVERecord?id=CVE-2008-5340 [ 17 ] CVE-2008-5341 https://www.cve.org/CVERecord?id=CVE-2008-5341 [ 18 ] CVE-2008-5342 https://www.cve.org/CVERecord?id=CVE-2008-5342 [ 19 ] CVE-2008-5343 https://www.cve.org/CVERecord?id=CVE-2008-5343 [ 20 ] CVE-2008-5344 https://www.cve.org/CVERecord?id=CVE-2008-5344 [ 21 ] CVE-2008-5345 https://www.cve.org/CVERecord?id=CVE-2008-5345 [ 22 ] CVE-2008-5346 https://www.cve.org/CVERecord?id=CVE-2008-5346 [ 23 ] CVE-2008-5347 https://www.cve.org/CVERecord?id=CVE-2008-5347 [ 24 ] CVE-2008-5348 https://www.cve.org/CVERecord?id=CVE-2008-5348 [ 25 ] CVE-2008-5349 https://www.cve.org/CVERecord?id=CVE-2008-5349 [ 26 ] CVE-2008-5350 https://www.cve.org/CVERecord?id=CVE-2008-5350 [ 27 ] CVE-2008-5351 https://www.cve.org/CVERecord?id=CVE-2008-5351 [ 28 ] CVE-2008-5352 https://www.cve.org/CVERecord?id=CVE-2008-5352 [ 29 ] CVE-2008-5353 https://www.cve.org/CVERecord?id=CVE-2008-5353 [ 30 ] CVE-2008-5354 https://www.cve.org/CVERecord?id=CVE-2008-5354 [ 31 ] CVE-2008-5355 https://www.cve.org/CVERecord?id=CVE-2008-5355 [ 32 ] CVE-2008-5356 https://www.cve.org/CVERecord?id=CVE-2008-5356 [ 33 ] CVE-2008-5357 https://www.cve.org/CVERecord?id=CVE-2008-5357 [ 34 ] CVE-2008-5358 https://www.cve.org/CVERecord?id=CVE-2008-5358 [ 35 ] CVE-2008-5359 https://www.cve.org/CVERecord?id=CVE-2008-5359 [ 36 ] CVE-2008-5360 https://www.cve.org/CVERecord?id=CVE-2008-5360 [ 37 ] CVE-2009-1093 https://www.cve.org/CVERecord?id=CVE-2009-1093 [ 38 ] CVE-2009-1094 https://www.cve.org/CVERecord?id=CVE-2009-1094 [ 39 ] CVE-2009-1095 https://www.cve.org/CVERecord?id=CVE-2009-1095 [ 40 ] CVE-2009-1096 https://www.cve.org/CVERecord?id=CVE-2009-1096 [ 41 ] CVE-2009-1097 https://www.cve.org/CVERecord?id=CVE-2009-1097 [ 42 ] CVE-2009-1098 https://www.cve.org/CVERecord?id=CVE-2009-1098 [ 43 ] CVE-2009-1099 https://www.cve.org/CVERecord?id=CVE-2009-1099 [ 44 ] CVE-2009-1100 https://www.cve.org/CVERecord?id=CVE-2009-1100 [ 45 ] CVE-2009-1101 https://www.cve.org/CVERecord?id=CVE-2009-1101 [ 46 ] CVE-2009-1102 https://www.cve.org/CVERecord?id=CVE-2009-1102 [ 47 ] CVE-2009-1103 https://www.cve.org/CVERecord?id=CVE-2009-1103 [ 48 ] CVE-2009-1104 https://www.cve.org/CVERecord?id=CVE-2009-1104 [ 49 ] CVE-2009-1105 https://www.cve.org/CVERecord?id=CVE-2009-1105 [ 50 ] CVE-2009-1106 https://www.cve.org/CVERecord?id=CVE-2009-1106 [ 51 ] CVE-2009-1107 https://www.cve.org/CVERecord?id=CVE-2009-1107 [ 52 ] CVE-2009-2409 https://www.cve.org/CVERecord?id=CVE-2009-2409 [ 53 ] CVE-2009-2475 https://www.cve.org/CVERecord?id=CVE-2009-2475 [ 54 ] CVE-2009-2476 https://www.cve.org/CVERecord?id=CVE-2009-2476 [ 55 ] CVE-2009-2670 https://www.cve.org/CVERecord?id=CVE-2009-2670 [ 56 ] CVE-2009-2671 https://www.cve.org/CVERecord?id=CVE-2009-2671 [ 57 ] CVE-2009-2672 https://www.cve.org/CVERecord?id=CVE-2009-2672 [ 58 ] CVE-2009-2673 https://www.cve.org/CVERecord?id=CVE-2009-2673 [ 59 ] CVE-2009-2674 https://www.cve.org/CVERecord?id=CVE-2009-2674 [ 60 ] CVE-2009-2675 https://www.cve.org/CVERecord?id=CVE-2009-2675 [ 61 ] CVE-2009-2676 https://www.cve.org/CVERecord?id=CVE-2009-2676 [ 62 ] CVE-2009-2689 https://www.cve.org/CVERecord?id=CVE-2009-2689 [ 63 ] CVE-2009-2690 https://www.cve.org/CVERecord?id=CVE-2009-2690 [ 64 ] CVE-2009-2716 https://www.cve.org/CVERecord?id=CVE-2009-2716 [ 65 ] CVE-2009-2718 https://www.cve.org/CVERecord?id=CVE-2009-2718 [ 66 ] CVE-2009-2719 https://www.cve.org/CVERecord?id=CVE-2009-2719 [ 67 ]CVE-2009-2720 https://www.cve.org/CVERecord?id=CVE-2009-2720 [ 68 ] CVE-2009-2721 https://www.cve.org/CVERecord?id=CVE-2009-2721 [ 69 ] CVE-2009-2722 https://www.cve.org/CVERecord?id=CVE-2009-2722 [ 70 ] CVE-2009-2723 https://www.cve.org/CVERecord?id=CVE-2009-2723 [ 71 ] CVE-2009-2724 https://www.cve.org/CVERecord?id=CVE-2009-2724 [ 72 ] CVE-2009-3728 https://www.cve.org/CVERecord?id=CVE-2009-3728 [ 73 ] CVE-2009-3729 https://www.cve.org/CVERecord?id=CVE-2009-3729 [ 74 ] CVE-2009-3865 https://www.cve.org/CVERecord?id=CVE-2009-3865 [ 75 ] CVE-2009-3866 https://www.cve.org/CVERecord?id=CVE-2009-3866 [ 76 ] CVE-2009-3867 https://www.cve.org/CVERecord?id=CVE-2009-3867 [ 77 ] CVE-2009-3868 https://www.cve.org/CVERecord?id=CVE-2009-3868 [ 78 ] CVE-2009-3869 https://www.cve.org/CVERecord?id=CVE-2009-3869 [ 79 ] CVE-2009-3871 https://www.cve.org/CVERecord?id=CVE-2009-3871 [ 80 ] CVE-2009-3872 https://www.cve.org/CVERecord?id=CVE-2009-3872 [ 81 ] CVE-2009-3873 https://www.cve.org/CVERecord?id=CVE-2009-3873 [ 82 ] CVE-2009-3874 https://www.cve.org/CVERecord?id=CVE-2009-3874 [ 83 ] CVE-2009-3875 https://www.cve.org/CVERecord?id=CVE-2009-3875 [ 84 ] CVE-2009-3876 https://www.cve.org/CVERecord?id=CVE-2009-3876 [ 85 ] CVE-2009-3877 https://www.cve.org/CVERecord?id=CVE-2009-3877 [ 86 ] CVE-2009-3879 https://www.cve.org/CVERecord?id=CVE-2009-3879 [ 87 ] CVE-2009-3880 https://www.cve.org/CVERecord?id=CVE-2009-3880 [ 88 ] CVE-2009-3881 https://www.cve.org/CVERecord?id=CVE-2009-3881 [ 89 ] CVE-2009-3882 https://www.cve.org/CVERecord?id=CVE-2009-3882 [ 90 ] CVE-2009-3883 https://www.cve.org/CVERecord?id=CVE-2009-3883 [ 91 ] CVE-2009-3884 https://www.cve.org/CVERecord?id=CVE-2009-3884 [ 92 ] CVE-2009-3886 https://www.cve.org/CVERecord?id=CVE-2009-3886 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200911-02 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2009 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Critical flaws in Sun JDK/JRE highlight risks of potential remote code execution. Key update details provided.. Gentoo Security, JDK Issues, JRE Updates. . LinuxSecurity.com Team

Calendar 2 Nov 17, 2009 Gentoo
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorynetwork attackjdk

Scientific Linux: Important jdk Security Update for Critical Threats

Important: jdk-1.5.0 security update. Date: Wed, 28 Nov 2007 15:30:15 -0600 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for jdk (java) on SL5.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." Synopsis: Important: jdk-1.5.0 security update Issue date: 2007-11-28 CVE Names: CVE-2007-5232 CVE-2007-5238 CVE-2007-5239 CVE-2007-5240 CVE-2007-5273 CVE-2007-5274 CVE-2007-3503 CVE-2007-3655 CVE-2007-3698 CVE-2007-3922 A flaw in the applet caching mechanism of the Java Runtime Environment (JRE) did not correctly process the creation of network connections. A remote attacker could use this flaw to create connections to services on machines other than the one that the applet was downloaded from. (CVE-2007-5232) Multiple vulnerabilities existed in Java Web Start allowing an untrusted application to determine the location of the Java Web Start cache. (CVE-2007-5238) Untrusted Java Web Start Applications or Java Applets were able to drag and drop a file to a Desktop Application. A user-assisted remote attacker could use this flaw to move or copy arbitrary files. (CVE-2007-5239) The Java Runtime Environment (JRE) allowed untrusted Java Applets or applications to display oversized Windows. This could be used by remote attackers to hide security warning banners. (CVE-2007-5240) Unsigned Java Applets communicating via a HTTP proxy could allow a remote attacker to violate the Java security model. A cached, malicious Applet could create network connections to services on other machines. (CVE-2007-5273) Unsigned Applets loaded with Mozilla Firefox or Opera browsers allowed remote attackers to violate the Java security model. A cached, malicious Applet could create network connections to services on other machines. (CVE-2007-5274) The Javadoc tool was able to generate HTML documentation pages that contained cross-site scripting (XSS) vulnerabilities. A remote attacker could use this to inject arbitrary web script or HTML.(CVE-2007-3503) The Java Web Start URL parsing component contained a buffer overflow vulnerability within the parsing code for JNLP files. A remote attacker could create a malicious JNLP file that could trigger this flaw and execute arbitrary code when opened. (CVE-2007-3655) The JSSE component did not correctly process SSL/TLS handshake requests. A remote attacker who is able to connect to a JSSE-based service could trigger this flaw leading to a denial-of-service. (CVE-2007-3698) A flaw was found in the applet class loader. An untrusted applet could use this flaw to circumvent network access restrictions, possibly connecting to services hosted on the machine that executed the applet. (CVE-2007-3922) NOTE: These packages have been tested to not remove newer jdks (such as 1.6 or 1.7) SL 5.x SRPMS: java-1.5.0-sun-compat-1.5.0.14-1jpp.src.rpm i386: java-1.5.0-sun-compat-1.5.0.14-1jpp.noarch.rpm jdk-1.5.0_14-fcs.i586.rpm x86_64: java-1.5.0-sun-compat-1.5.0.14-1jpp.noarch.rpm jdk-1.5.0_14-fcs.i586.rpm jdk-1.5.0_14-fcs.x86_64.rpm -Connie Sieh -Troy Dawson . A recent security patch for JDK on Scientific Linux addresses numerous serious flaws and boosts overall system security.. jdk Security Update, Scientific Linux, Java Vulnerabilities, Network Threats, Security Errata. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 28, 2007 Important Scientific Linux
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here