Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatebug fix

Red Hat Enterprise Linux 9 RHSA-2023-4177 Moderate: OpenJDK Update

An update for java-17-openjdk is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: java-17-openjdk security and bug fix update Advisory ID: RHSA-2023:4177-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4177 Issue date: 2023-07-20 CVE Names: CVE-2023-22006 CVE-2023-22036 CVE-2023-22041 CVE-2023-22044 CVE-2023-22045 CVE-2023-22049 CVE-2023-25193 ==================================================================== 1. Summary: An update for java-17-openjdk is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux CRB (v. 9) - aarch64, ppc64le, s390x, x86_64 3. Description: The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * OpenJDK: ZIP file parsing infinite loop (8302483) (CVE-2023-22036) * OpenJDK: weakness in AES implementation (8308682) (CVE-2023-22041) * OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312) (CVE-2023-22049) * harfbuzz: OpenJDK: O(n^2) growth via consecutive marks (CVE-2023-25193) * OpenJDK: HTTP client insufficient file name validation (8302475) (CVE-2023-22006) * OpenJDK: modulo operator array indexing issue(8304460) (CVE-2023-22044) * OpenJDK: array indexing integer overflow issue (8304468) (CVE-2023-22045) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Installing the same java-17-openjdk-headless package on two different systems resulted in distinct classes.jsa files getting generated. This was because the CDS archive was being generated by a post script action of the java-17-openjdk-headless package. This prevented the use of the dynamic dump feature, as the checksum in the archive would be different on each system. This is resolved in this release by using the .jsa files generated during the initial build. (RHBZ#2221653) * Prepare for the next quarterly OpenJDK upstream release (2023-07, 17.0.8) [rhel-9] (BZ#2222852) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of OpenJDK Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2167254 - CVE-2023-25193 harfbuzz: OpenJDK: O(n^2) growth via consecutive marks 2221619 - OpenJDK: font processing denial of service vulnerability (8301998) 2221626 - CVE-2023-22006 OpenJDK: HTTP client insufficient file name validation (8302475) 2221634 - CVE-2023-22036 OpenJDK: ZIP file parsing infinite loop (8302483) 2221642 - CVE-2023-22044 OpenJDK: modulo operator array indexing issue (8304460) 2221645 - CVE-2023-22045 OpenJDK: array indexing integer overflow issue (8304468) 2221647 - CVE-2023-22049 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312) 2221653 - Base JDK CDS archive (classes.jsa) not unique per JDK build [rhel-9,openjdk-17] [rhel-9.2.0.z] 2222852 - Prepare for the next quarterly OpenJDK upstream release (2023-07, 17.0.8) [rhel-9] [rhel-9.2.0.z] 2223207 - CVE-2023-22041 OpenJDK: weakness in AESimplementation (8308682) 6. Package List: Red Hat Enterprise Linux AppStream (v.9): Source: java-17-openjdk-17.0.8.0.7-2.el9.src.rpm aarch64: java-17-openjdk-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-demo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-devel-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-headless-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-javadoc-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-javadoc-zip-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-jmods-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-src-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-static-libs-17.0.8.0.7-2.el9.aarch64.rpm ppc64le: java-17-openjdk-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-demo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-devel-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-headless-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-javadoc-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-javadoc-zip-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-jmods-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-src-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-static-libs-17.0.8.0.7-2.el9.ppc64le.rpm s390x: java-17-openjdk-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-demo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-devel-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-headless-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-javadoc-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-javadoc-zip-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-jmods-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-src-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-static-libs-17.0.8.0.7-2.el9.s390x.rpm x86_64: java-17-openjdk-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-demo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-devel-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-headless-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-javadoc-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-javadoc-zip-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-jmods-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-src-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-static-libs-17.0.8.0.7-2.el9.x86_64.rpm Red Hat Enterprise Linux CRB (v.9): aarch64: java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-demo-fastdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-demo-slowdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-devel-fastdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-devel-fastdebug-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-devel-slowdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-devel-slowdebug-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-fastdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-fastdebug-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-headless-fastdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-headless-fastdebug-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-headless-slowdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-headless-slowdebug-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-jmods-fastdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-jmods-slowdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-slowdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-slowdebug-debuginfo-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-src-fastdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-src-slowdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-static-libs-fastdebug-17.0.8.0.7-2.el9.aarch64.rpm java-17-openjdk-static-libs-slowdebug-17.0.8.0.7-2.el9.aarch64.rpm ppc64le: java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-demo-fastdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-demo-slowdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-devel-fastdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-devel-fastdebug-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-devel-slowdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-devel-slowdebug-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-fastdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-fastdebug-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-headless-fastdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-headless-fastdebug-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-headless-slowdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-headless-slowdebug-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-jmods-fastdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-jmods-slowdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-slowdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-slowdebug-debuginfo-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-src-fastdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-src-slowdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-static-libs-fastdebug-17.0.8.0.7-2.el9.ppc64le.rpm java-17-openjdk-static-libs-slowdebug-17.0.8.0.7-2.el9.ppc64le.rpm s390x: java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-demo-slowdebug-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-devel-slowdebug-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-devel-slowdebug-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-headless-slowdebug-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-headless-slowdebug-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-jmods-slowdebug-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-slowdebug-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-slowdebug-debuginfo-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-src-slowdebug-17.0.8.0.7-2.el9.s390x.rpm java-17-openjdk-static-libs-slowdebug-17.0.8.0.7-2.el9.s390x.rpm x86_64: java-17-openjdk-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-debugsource-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-demo-fastdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-demo-slowdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-devel-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-devel-fastdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-devel-fastdebug-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-devel-slowdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-devel-slowdebug-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-fastdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-fastdebug-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-headless-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-headless-fastdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-headless-fastdebug-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-headless-slowdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-headless-slowdebug-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-jmods-fastdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-jmods-slowdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-slowdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-slowdebug-debuginfo-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-src-fastdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-src-slowdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-static-libs-fastdebug-17.0.8.0.7-2.el9.x86_64.rpm java-17-openjdk-static-libs-slowdebug-17.0.8.0.7-2.el9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2023-22006 https://access.redhat.com/security/cve/CVE-2023-22036 https://access.redhat.com/security/cve/CVE-2023-22041 https://access.redhat.com/security/cve/CVE-2023-22044 https://access.redhat.com/security/cve/CVE-2023-22045 https://access.redhat.com/security/cve/CVE-2023-22049 https://access.redhat.com/security/cve/CVE-2023-25193 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJkuTH8AAoJENzjgjWX9erE1RsP/1yQqL+kQHGI+pVClrMe7ADu WCVOroHWudvTGXRV0IpFab4V7AYofJV4CTcCs/cRYtJhaHdd+2jN9XIVvEd/ukYr zyyunMNsIbSLnSTNTZQ5cVwVOZNIzoqqTLDTjbZTCoe6UnI2+vkgSwEe6M0MWv8T IiG+pRSNtwHl8qbGz3/RxOnvcVP08R0M1uFaZFo7zwUn4qx+NcEz4h9Ak+87TBuC IzpDM84iEGvjQfJ1GM4jov7Vkv0NqH35BQCPf1QhhF98Bb3xe80awuyHEjfZLzan vLA5PocvKma/B7rHkelSkf8NNU2J6UIwVkslyZw6Y7l7irLnureELIyBYG+o2X0C QxFZSKhN66o8YjBFbcOcCJKkhUTkvbTwqPUwHD8CR1wv1KSYzviZXAymHBIV87d9 LJF8xbNJgynPw8qy2Ub6MmXz0F22P/pLzgVGhzqef5zmbn4QSjCT3mgKyscr3i6z jqcDtFfYqCn0CW1nvpOFlGfaMEkZL4FuYzjkRBgURwujmTuoLR6VG2Kp3MmiSVEl H+iPB7q6tmHtQyFwKrtJRqZKWqj7q5317jBx8gi+fVnd06rEWfLXiWHnmXHOb2RB F4I7rZ/98Noagazzm4pqBAWytBrzNlkv8BCxukY88U+3eL0jTRoxmph8b2VtS3yc jmIq9zJ1RKmyBrBrRbb/ =PeRC -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A moderate security advisory urges users of Red Hat Enterprise Linux 9 to update java-17-openjdk to fix vulnerabilities that could lead to exploits. Red Hat Security, Java Update, OpenJDK Security, Red Hat Enterprise, Bug Fixes. . LinuxSecurity.com Team

Calendar 2 Jul 20, 2023 Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity fixRed Hat Enterprise Linux

Red Hat Enterprise Linux 6 RHSA-2019:1840-01 Moderate OpenJDK Fix

An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: java-1.7.0-openjdk security update Advisory ID: RHSA-2019:1840-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:1840 Issue date: 2019-07-23 CVE Names: CVE-2019-2745 CVE-2019-2762 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 ==================================================================== 1. Summary: An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, noarch, x86_64 3. Description: The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix(es): * OpenJDK: Side-channel attack risks in Elliptic Curve (EC) cryptography (Security, 8208698) (CVE-2019-2745) * OpenJDK: Insufficient checksof suppressed exceptions in deserialization (Utilities, 8212328) (CVE-2019-2762) * OpenJDK: Unbounded memory allocation during deserialization in Collections (Utilities, 8213432) (CVE-2019-2769) * OpenJDK: Missing URL format validation (Networking, 8221518) (CVE-2019-2816) * OpenJDK: Missing array bounds check in crypto providers (JCE, 8223511) (CVE-2019-2842) * OpenJDK: Insufficient restriction of privileges in AccessController (Security, 8216381) (CVE-2019-2786) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of OpenJDK Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1730056 - CVE-2019-2769 OpenJDK: Unbounded memory allocation during deserialization in Collections (Utilities, 8213432) 1730099 - CVE-2019-2816 OpenJDK: Missing URL format validation (Networking, 8221518) 1730110 - CVE-2019-2842 OpenJDK: Missing array bounds check in crypto providers (JCE, 8223511) 1730255 - CVE-2019-2786 OpenJDK: Insufficient restriction of privileges in AccessController (Security, 8216381) 1730411 - CVE-2019-2745 OpenJDK: Side-channel attack risks in Elliptic Curve (EC) cryptography (Security, 8208698) 1730415 - CVE-2019-2762 OpenJDK: Insufficient checks of suppressed exceptions in deserialization (Utilities, 8212328) 6. Package List: Red Hat Enterprise Linux Desktop (v.6): Source: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.src.rpm i386: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-devel-1.7.0.231-2.6.19.1.el6_10.i686.rpm x86_64: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): i386: java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-demo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-src-1.7.0.231-2.6.19.1.el6_10.i686.rpm noarch: java-1.7.0-openjdk-javadoc-1.7.0.231-2.6.19.1.el6_10.noarch.rpm x86_64: java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.src.rpm x86_64: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): noarch: java-1.7.0-openjdk-javadoc-1.7.0.231-2.6.19.1.el6_10.noarch.rpm x86_64: java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.src.rpm i386: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-devel-1.7.0.231-2.6.19.1.el6_10.i686.rpm x86_64: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): i386: java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-demo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-src-1.7.0.231-2.6.19.1.el6_10.i686.rpm noarch: java-1.7.0-openjdk-javadoc-1.7.0.231-2.6.19.1.el6_10.noarch.rpm x86_64: java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.src.rpm i386: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-devel-1.7.0.231-2.6.19.1.el6_10.i686.rpm x86_64: java-1.7.0-openjdk-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): i386: java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-demo-1.7.0.231-2.6.19.1.el6_10.i686.rpm java-1.7.0-openjdk-src-1.7.0.231-2.6.19.1.el6_10.i686.rpm noarch: java-1.7.0-openjdk-javadoc-1.7.0.231-2.6.19.1.el6_10.noarch.rpm x86_64: java-1.7.0-openjdk-debuginfo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.231-2.6.19.1.el6_10.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify thesignature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2019-2745 https://access.redhat.com/security/cve/CVE-2019-2762 https://access.redhat.com/security/cve/CVE-2019-2769 https://access.redhat.com/security/cve/CVE-2019-2786 https://access.redhat.com/security/cve/CVE-2019-2816 https://access.redhat.com/security/cve/CVE-2019-2842 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXTcyx9zjgjWX9erEAQgcPA/+Oa4a29kdX4bJgWZyrCYeXw+yPuChnMtW 5/taPhGQOeJdma7vR5QrC+wJpkxDFCS3NhiiVOiZKaYlmR06rUQLW7tcju54grh9 beddkmuKBYiwRYoHXQrLVXFepTSPSFYnZz+fio0+qkxzlyx7UlL5Xnod96vx0AKr qgxD7dBbAG/zz0BTZNmqsgBXD6Lt2UwQhwgjBVoX87OPOdf3z9w/rZZKYzuqp+3r +zzdYf2w1nRmc85uzFhuxXImJ2bbtA9OfX6diPRky4JSqUf+5FiggQ1ssoEM6fLW bMLwBWyc6Rq3rFuu1JyKJRkKdKsWqGmkJq7FhZ2R2QaIx2KOuJhQIikjNxDcQLtS 9+JghzqUCNg0bfZvER02Y5gkmcC5Bwytog8YSrB8wKkuR4nwUNAUFxBDmMJI6pRh S+3JOSyTlfH71z1d9GBJwNUZzvMknggOV3M1Pn727QMTWtY09qbwx/VWgYYFUD18 Eeh9iU5jaL7Pkp3n9+DV975J8lfCIw0N/68C8637uIuYrfGibTE1ykzbvH491FTr GDRfKoNq+tlwyJVsLVSDduJ9B3nTdm2YnWA5t5hdzcuJOwqB78tbSAz9TVaLcuPk oWHn1RbDBqkOx/Jq6LTOG7ePqTiwh8/H7JlSCcjb+CPN8r8zlTJtoIHowOAmghEB E/vwR4j+AWA=XnVI -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Java-1.7.0-OpenJDK security patch for Red Hat categorized as moderate, remedying various vulnerabilities and risks.. Red Hat Security, OpenJDK Fixes, Security Updates, Java Security Advisory. . LinuxSecurity.com Team

Calendar 2 Jul 23, 2019 Red Hat
Banner 2 1028x280 1708121730 1 1771599631
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryremote attackRed Hat Enterprise Linux

Critical OpenJDK Remote Attack for Red Hat Enterprise Linux Versions 5-7

Updated java-1.6.0-openjdk packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Important: java-1.6.0-openjdk security and bug fix update Advisory ID: RHSA-2014:1634-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2014:1634.html Issue date: 2014-10-14 Updated on: 2014-10-15 CVE Names: CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 ==================================================================== 1. Summary: Updated java-1.6.0-openjdk packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, x86_64 Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64,s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The java-1.6.0-openjdk packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Java Software Development Kit. Multiple flaws were discovered in the Libraries, 2D, and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions. (CVE-2014-6506, CVE-2014-6531, CVE-2014-6502, CVE-2014-6511, CVE-2014-6504, CVE-2014-6519) It was discovered that the StAX XML parser in the JAXP component in OpenJDK performed expansion of external parameter entities even when external entity substitution was disabled. A remote attacker could use this flaw to perform XML eXternal Entity (XXE) attack against applications using the StAX parser to parse untrusted XML documents. (CVE-2014-6517) It was discovered that the DatagramSocket implementation in OpenJDK failed to perform source address checks for packets received on a connected socket. A remote attacker could use this flaw to have their packets processed as if they were received from the expected source. (CVE-2014-6512) It was discovered that the TLS/SSL implementation in the JSSE component in OpenJDK failed to properly verify the server identity during the renegotiation following session resumption, making it possible for malicious TLS/SSL servers to perform a Triple Handshake attack against clients using JSSE and client certificate authentication. (CVE-2014-6457) It was discovered that the CipherInputStream class implementation in OpenJDK did not properly handle certain exceptions. This could possibly allow an attacker to affect the integrity of an encrypted stream handled by thisclass. (CVE-2014-6558) The CVE-2014-6512 was discovered by Florian Weimer of Red Hat Product Security. This update also fixes the following bug: * The TLS/SSL implementation in OpenJDK previously failed to handle Diffie-Hellman (DH) keys with more than 1024 bits. This caused client applications using JSSE to fail to establish TLS/SSL connections to serversusing larger DH keys during the connection handshake. This update adds support for DH keys with size up to 2048 bits. (BZ#1148309) All users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1071210 - CVE-2014-6512 OpenJDK: DatagramSocket connected socket missing source check (Libraries, 8039509) 1150155 - CVE-2014-6506 OpenJDK: insufficient permission checks when setting resource bundle on system logger (Libraries, 8041564) 1150182 - CVE-2014-6504 OpenJDK: incorrect optimization of range checks in C2 compiler (Hotspot, 8022783) 1150273 - CVE-2014-6519 OpenJDK: missing BootstrapMethods bounds check (Hotspot, 8041717) 1150651 - CVE-2014-6531 OpenJDK: insufficient ResourceBundle name check (Libraries, 8044274) 1150669 - CVE-2014-6502 OpenJDK: LogRecord use of incorrect CL when loading ResourceBundle (Libraries, 8042797) 1151046 - CVE-2014-6457 OpenJDK: Triple Handshake attack against TLS/SSL connections (JSSE, 8037066) 1151063 - CVE-2014-6558 OpenJDK: CipherInputStream incorrect exception handling (Security, 8037846) 1151364 - CVE-2014-6517 OpenJDK: StAX parser parameter entity XXE (JAXP, 8039533) 1151517 - CVE-2014-6511 ICU: Layout Engine ContextualSubstitution missing boundarychecks (JDK 2D, 8041540) 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el5_11.src.rpm i386: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el5_11.i386.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el5_11.src.rpm i386: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el5_11.i386.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el5_11.i386.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el5_11.x86_64.rpm Red Hat Enterprise Linux Desktop (v.6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm i386: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.i686.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm i386: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el6_6.i686.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm i386: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el6_6.i686.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm i386: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el6_6.i686.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm i386: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el6_6.i686.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v.6): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el6_6.src.rpm i386: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el6_6.i686.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el6_6.i686.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el6_6.x86_64.rpm Red Hat Enterprise Linux Client (v. 7): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.src.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.src.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.src.rpm ppc64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.ppc64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.ppc64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el7_0.ppc64.rpm s390x: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.s390x.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.s390x.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el7_0.s390x.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.ppc64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el7_0.ppc64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el7_0.ppc64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el7_0.ppc64.rpm s390x: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.s390x.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el7_0.s390x.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el7_0.s390x.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el7_0.s390x.rpm x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.src.rpm x86_64: java-1.6.0-openjdk-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.33-1.13.5.0.el7_0.x86_64.rpm These packages are GPG signed byRed Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2014-6457 https://access.redhat.com/security/cve/CVE-2014-6502 https://access.redhat.com/security/cve/CVE-2014-6504 https://access.redhat.com/security/cve/CVE-2014-6506 https://access.redhat.com/security/cve/CVE-2014-6511 https://access.redhat.com/security/cve/CVE-2014-6512 https://access.redhat.com/security/cve/CVE-2014-6517 https://access.redhat.com/security/cve/CVE-2014-6519 https://access.redhat.com/security/cve/CVE-2014-6531 https://access.redhat.com/security/cve/CVE-2014-6558 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2014 Red Hat, Inc. . Crucial Oracle update for java-12.0.1 addressing various vulnerabilities and defects. Upgrade advised.. Red Hat Java Advisory, OpenJDK Update, Java Security Fix, Important Linux Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 14, 2014 Important Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here