Описание
ELSA-2011-1380: java-1.6.0-openjdk security update (CRITICAL)
[1:1.6.0.0-1.40.1.9.10]
- Resolves: rhbz#744788
- Bumped to IcedTea6 1.9.8
-removed font copying
Security fixes
- S7000600, CVE-2011-3547: InputStream skip() information leak
- S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor
- S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow
- S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager
- S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine
- S7055902, CVE-2011-3521: IIOP deserialization code execution
- S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks
- S7064341, CVE-2011-3389: JSSE
- S7070134, CVE-2011-3558: Hotspot unspecified issue
- S7077466, CVE-2011-3556: RMI DGC server remote code execution
- S7083012, CVE-2011-3557: RMI registry privileged code execution
- S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection NetX
- PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
java-1.6.0-openjdk
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-demo
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-devel
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-javadoc
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-src
1.6.0.0-1.23.1.9.10.0.1.el5_7
Oracle Linux i386
java-1.6.0-openjdk
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-demo
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-devel
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-javadoc
1.6.0.0-1.23.1.9.10.0.1.el5_7
java-1.6.0-openjdk-src
1.6.0.0-1.23.1.9.10.0.1.el5_7
Oracle Linux 6
Oracle Linux x86_64
java-1.6.0-openjdk
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-demo
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-devel
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-javadoc
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-src
1.6.0.0-1.40.1.9.10.el6_1
Oracle Linux i686
java-1.6.0-openjdk
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-demo
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-devel
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-javadoc
1.6.0.0-1.40.1.9.10.el6_1
java-1.6.0-openjdk-src
1.6.0.0-1.40.1.9.10.el6_1
Ссылки на источники
Связанные уязвимости
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.
Unspecified vulnerability in the Java Runtime Environment component in ...
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.