Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise Linuxcritical security

Red Hat Enterprise Linux 7 RHSA-2016:0650-01 Critical: OpenJDK Flaws

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Critical: java-1.8.0-openjdk security update Advisory ID: RHSA-2016:0650-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:0650.html Issue date: 2016-04-20 CVE Names: CVE-2016-0686 CVE-2016-0687 CVE-2016-0695 CVE-2016-3425 CVE-2016-3426 CVE-2016-3427 ==================================================================== 1. Summary: An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - noarch, x86_64 3. Description: The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * Multiple flaws were discovered in the Serialization and Hotspot components in OpenJDK. An untrusted Java application orapplet could use these flaws to completely bypass Java sandbox restrictions. (CVE-2016-0686, CVE-2016-0687) * It was discovered that the RMI server implementation in the JMX component in OpenJDK did not restrict which classes can be deserialized when deserializing authentication credentials. A remote, unauthenticated attacker able to connect to a JMX port could possibly use this flaw to trigger deserialization flaws. (CVE-2016-3427) * It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessive amount of memory when parsed. (CVE-2016-3425) * It was discovered that the GCM (Galois/Counter Mode) implementation in the JCE component in OpenJDK used a non-constant time comparison when comparing GCM authentication tags. A remote attacker could possibly use this flaw to determine the value of the authentication tag. (CVE-2016-3426) * It was discovered that the Security component in OpenJDK failed to check the digest algorithm strength when generating DSA signatures. The use of a digest weaker than the key strength could lead to the generation of signatures that were weaker than expected. (CVE-2016-0695) Note: If the web browser plug-in provided by the icedtea-web package was installed, the issues exposed via Java applets could have been exploited without user interaction if a user visited a malicious website. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of OpenJDK Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1327743 - CVE-2016-0686 OpenJDK: insufficient thread consistency checks in ObjectInputStream (Serialization, 8129952) 1327749 - CVE-2016-0687 OpenJDK: insufficient byte type checks (Hotspot, 8132051) 1328022 - CVE-2016-0695 OpenJDK: insufficient DSA keyparameters checks (Security, 8138593) 1328040 - CVE-2016-3425 OpenJDK: incorrect handling of surrogate pairs in XML attribute values (JAXP, 8143167) 1328059 - CVE-2016-3426 OpenJDK: non-constant time GCM authentication tag comparison (JCE, 8143945) 1328210 - CVE-2016-3427 OpenJDK: unrestricted deserialization of authentication credentials (JMX, 8144430) 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.src.rpm x86_64: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el7_2.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): noarch: java-1.8.0-openjdk-javadoc-1.8.0.91-0.b14.el7_2.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.91-0.b14.el7_2.noarch.rpm x86_64: java-1.8.0-openjdk-accessibility-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-headless-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.src.rpm x86_64: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el7_2.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v.7): noarch: java-1.8.0-openjdk-javadoc-1.8.0.91-0.b14.el7_2.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.91-0.b14.el7_2.noarch.rpm x86_64: java-1.8.0-openjdk-accessibility-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-headless-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.src.rpm ppc64: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.ppc64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.ppc64.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el7_2.ppc64.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el7_2.ppc64.rpm ppc64le: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.ppc64le.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.ppc64le.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el7_2.ppc64le.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el7_2.ppc64le.rpm s390x: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.s390x.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.s390x.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el7_2.s390x.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el7_2.s390x.rpm x86_64: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el7_2.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.7): noarch: java-1.8.0-openjdk-javadoc-1.8.0.91-0.b14.el7_2.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.91-0.b14.el7_2.noarch.rpm ppc64: java-1.8.0-openjdk-accessibility-1.8.0.91-0.b14.el7_2.ppc64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.ppc64.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el7_2.ppc64.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el7_2.ppc64.rpm ppc64le: java-1.8.0-openjdk-accessibility-1.8.0.91-0.b14.el7_2.ppc64le.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.ppc64le.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el7_2.ppc64le.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el7_2.ppc64le.rpm s390x: java-1.8.0-openjdk-accessibility-1.8.0.91-0.b14.el7_2.s390x.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.s390x.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el7_2.s390x.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el7_2.s390x.rpm x86_64: java-1.8.0-openjdk-accessibility-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.src.rpm x86_64: java-1.8.0-openjdk-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el7_2.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v.7): noarch: java-1.8.0-openjdk-javadoc-1.8.0.91-0.b14.el7_2.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.91-0.b14.el7_2.noarch.rpm x86_64: java-1.8.0-openjdk-accessibility-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el7_2.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.91-0.b14.el7_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2016-0686 https://access.redhat.com/security/cve/CVE-2016-0687 https://access.redhat.com/security/cve/CVE-2016-0695 https://access.redhat.com/security/cve/CVE-2016-3425 https://access.redhat.com/security/cve/CVE-2016-3426 https://access.redhat.com/security/cve/CVE-2016-3427 https://access.redhat.com/security/updates/classification#critical 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFXF+CiXlSAg2UNWIIRAsIJAJ9tSkQEVcHG/4ySB/h5iEvyfL7IZgCeKry2 b5jR44jfhzwNP4c3R5VWMYs=mxvI -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Oracle issues vital security patch for java-11.0.14-openjdk rectifying numerous vulnerabilities impacting corporate ecosystems.. OpenJDK Update, RedHat Security, Java Security Fix, Critical Update, Linux Enterprise Security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 20, 2016 Critical Red Hat
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorycriticalsecurity fix

Scientific Linux SL6.x: SLSA-2016:0651-1 critical: java-1.8.0-openjdk

Critical: java-1.8.0-openjdk security update. Date: Tue, 19 Apr 2016 08:55:30 -0500 Reply-To: Pat Riehecky Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: FASTBUGS for SL 7x x86_64 now available MIME-Version: 1.0 Message-ID: The following FASTBUGS have been uploadedto x86_64: fence-agents-all-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-apc-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-apc-snmp-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-bladecenter-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-brocade-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-cisco-mds-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-cisco-ucs-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-common-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-compute-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-drac5-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-eaton-snmp-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-emerson-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-eps-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-hpblade-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ibmblade-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ifmib-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ilo2-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ilo-moonshot-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ilo-mp-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ilo-ssh-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-intelmodular-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ipdu-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-ipmilan-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-kdump-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-mpath-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-rhevm-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-rsa-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-rsb-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-scsi-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-virsh-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-vmware-soap-4.0.11-27.el7_2.7.x86_64.rpm fence-agents-wti-4.0.11-27.el7_2.7.x86_64.rpm libguestfs-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-bash-completion-1.28.1-1.55.el7_2.2.noarch.rpm libguestfs-devel-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-gfs2-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-gobject-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-gobject-devel-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-gobject-doc-1.28.1-1.55.el7_2.2.noarch.rpm libguestfs-java-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-java-devel-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-javadoc-1.28.1-1.55.el7_2.2.noarch.rpm libguestfs-man-pages-ja-1.28.1-1.55.el7_2.2.noarch.rpm libguestfs-man-pages-uk-1.28.1-1.55.el7_2.2.noarch.rpm libguestfs-rescue-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-rsync-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-tools-1.28.1-1.55.el7_2.2.noarch.rpm libguestfs-tools-c-1.28.1-1.55.el7_2.2.x86_64.rpm libguestfs-xfs-1.28.1-1.55.el7_2.2.x86_64.rpm lua-guestfs-1.28.1-1.55.el7_2.2.x86_64.rpm ocaml-libguestfs-1.28.1-1.55.el7_2.2.x86_64.rpm ocaml-libguestfs-devel-1.28.1-1.55.el7_2.2.x86_64.rpm perl-Sys-Guestfs-1.28.1-1.55.el7_2.2.x86_64.rpm python-libguestfs-1.28.1-1.55.el7_2.2.x86_64.rpm resource-agents-3.9.5-54.el7_2.9.x86_64.rpm ruby-libguestfs-1.28.1-1.55.el7_2.2.x86_64.rpm virt-v2v-1.28.1-1.55.el7_2.2.x86_64.rpm Date: Wed, 20 Apr 2016 21:03:31 -0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Critical: java-1.8.0-openjdk on SL6.x i386/x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Critical: java-1.8.0-openjdk security update Advisory ID: SLSA-2016:0651-1 Issue Date: 2016-04-20 CVE Numbers: CVE-2016-0686 CVE-2016-0687 CVE-2016-0695 CVE-2016-3425 CVE-2016-3426 CVE-2016-3427 -- Security Fix(es): * Multiple flaws were discovered in the Serialization and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. (CVE-2016-0686, CVE-2016-0687) * It was discovered that the RMI server implementation in the JMX component in OpenJDK did not restrict which classes can be deserialized when deserializing authentication credentials. A remote, unauthenticated attacker able to connect to a JMX port could possibly use this flaw to trigger deserialization flaws. (CVE-2016-3427) * It was discovered that the JAXP component in OpenJDK failed to properly handle Unicode surrogate pairs used as part of the XML attribute values. Specially crafted XML input could cause a Java application to use an excessiveamount of memory when parsed. (CVE-2016-3425) * It was discovered that the GCM (Galois/Counter Mode) implementation in the JCE component in OpenJDK used a non-constant time comparison when comparing GCM authentication tags. A remote attacker could possibly use this flaw to determine the value of the authentication tag. (CVE-2016-3426) * It was discovered that the Security component in OpenJDK failed to check the digest algorithm strength when generating DSA signatures. The use of a digest weaker than the key strength could lead to the generation of signatures that were weaker than expected. (CVE-2016-0695) -- SL6 x86_64 java-1.8.0-openjdk-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-headless-debug-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el6_7.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.91-0.b14.el6_7.x86_64.rpm i386 java-1.8.0-openjdk-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-debuginfo-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-headless-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-debug-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-demo-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-demo-debug-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-devel-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-devel-debug-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-headless-debug-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-src-1.8.0.91-0.b14.el6_7.i686.rpm java-1.8.0-openjdk-src-debug-1.8.0.91-0.b14.el6_7.i686.rpm noarch java-1.8.0-openjdk-javadoc-1.8.0.91-0.b14.el6_7.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.91-0.b14.el6_7.noarch.rpm - Scientific Linux Development Team . Essential java-1.8.0-openjdk patch for Scientific Linux fixes several vulnerabilities affecting both security and efficiency.. Java Update, Scientific Linux Security, OpenJDK Patch, Critical Security Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 20, 2016 Critical Scientific Linux
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here