Discover Security Vulnerabilities News
OpenJDK DoS, Info Disclosure Vulns Fixed
Several important denial of service (DoS) and information disclosure vulnerabilities have been discovered in the OpenJDK Java runtime. These bugs require no privileges or user interaction to exploit, and have been classified by the National Vulnerability Database as having a high confidentiality, integrity and availability impact on affected systems.
These issues could result in the compromise of sensitive information, loss of access to impacted systems, or bypass of sandbox restrictions.
An OpenJDK security update has been released that mitigates these flaws. We strongly recommend that all impacted users apply the OpenJDK updates issued by their distro(s) now to protect against attacks threatening the confidentiality, integrity and availability of their systems and their sensitive data.
To stay on top of important updates released by the open-source programs and applications you use, be sure to register as a LinuxSecurity user, then subscribe to our Linux Advisory Watch newsletter and customize your advisories for the distro(s) you use. This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems.
Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s).