SCIENTIFIC-LINUX-ERRATA Archives

February 2013

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Security ERRATA Important: java-1.7.0-openjdk on SL5.x, SL6.x i386/x86_64
From:
Pat Riehecky <[log in to unmask]>
Reply To:
Pat Riehecky <[log in to unmask]>
Date:
Wed, 20 Feb 2013 13:16:32 -0600
Content-Type:
text/plain
Parts/Attachments:
text/plain (65 lines) 
Synopsis:          Important: java-1.7.0-openjdk security update
Issue Date:        2013-02-20
CVE Numbers:       CVE-2013-0169
                    CVE-2013-1486
                    CVE-2013-1484
                    CVE-2013-1485
--

Multiple improper permission check issues were discovered in the JMX and
Libraries components in OpenJDK. An untrusted Java application or applet 
could
use these flaws to bypass Java sandbox restrictions. (CVE-2013-1486,
CVE-2013-1484)

An improper permission check issue was discovered in the Libraries 
component in
OpenJDK. An untrusted Java application or applet could use this flaw to 
bypass
certain Java sandbox restrictions. (CVE-2013-1485)

It was discovered that OpenJDK leaked timing information when decrypting
TLS/SSL protocol encrypted records when CBC-mode cipher suites were used. A
remote attacker could possibly use this flaw to retrieve plain text from the
encrypted packets by using a TLS/SSL server as a padding oracle.
(CVE-2013-0169)

This erratum also upgrades the OpenJDK package to IcedTea7 2.3.7.
All running instances of OpenJDK Java must be restarted for the update 
to take
effect.
--

SL5
   x86_64
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
   i386
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.i386.rpm
SL6
   x86_64
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
   i386
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el6_3.i686.rpm
   noarch
     java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el6_3.noarch.rpm

- Scientific Linux Development Team

ATOM RSS1 RSS2