ELSA-2015-1230

ELSA-2015-1230 - java-1.7.0-openjdk security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2015-07-16

Description


[1:1.7.0.85-2.6.1.3.0.1]
- Add oracle-enterprise.patch
- Fix DISTRO_NAME to 'Oracle Linux'

[1:1.7.0.85-2.6.1.3]
- Check return value of gio_init in gsettings_init and return false if necessary.
- Re-enable the use of system GConf.
- Only ifdef g_type_init&g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined.
- Resolves: rhbz#1242587

[1:1.7.0.85-2.6.1.2]
- Turn off system GConf as library seems buggy on RHEL 5.11
- Resolves: rhbz#1235155

[1:1.7.0.85-2.6.1.1]
- Bump upstream tarball to u25b01 to fix issue with 8075374 backport.
- Resolves: rhbz#1235155

[1:1.7.0.85-2.6.1.0]
- Remove upstream PR2503 fix.
- Resolves: rhbz#1235155

[1:1.7.0.85-2.6.1.0]
- Update OpenJDK tarball so correct version is used.
- Resolves: rhbz#1235155

[1:1.7.0.85-2.6.1.0]
- Bump to 2.6.1 and u85b00.
- Resolves: rhbz#1235155

[1:1.7.0.80-2.6.0.0]
- The RHEL 5 version of libsctp is too old for the OpenJDK SCTP implementation.
- Resolves: rhbz#1235155

[1:1.7.0.80-2.6.0.0]
- Backport PR2503 to allow build to proceed without GIO being present.
- Resolves: rhbz#1235155

[1:1.7.0.80-2.6.0.0]
- Revert move to redhat-lsb-core as unavailable on RHEL 5.11.
- Resolves: rhbz#1235155

[1:1.7.0.80-2.6.0.0]
- Remove libxslt and mercurial dependencies pulled in from IcedTea builds.
- Reduce redhat-lsb dependency to redhat-lsb-core (lsb_release)
- Resolves: rhbz#1235155

[1:1.7.0.80-2.6.0.0]
- Revert addition of LCMS removal as RHEL < 7 does not have LCMS 2.
- Resolves: rhbz#1235155

[1:1.7.0.80-2.6.0.0]
- Bump to 2.6.0 and u80b32.
- Drop upstreamed patches and separate AArch64 HotSpot.
- Add dependencies on pcsc-lite-devel (PR2496) and lksctp-tools-devel (PR2446)
- Add dependency on GConf2-devel (PR2320)
- Only run -Xshare:dump on JIT archs other than power64 as port lacks support
- Update remove-intree-libraries script to cover LCMS and PCSC headers and SunEC.
- Resolves: rhbz#1235155


Related CVEs


CVE-2015-4000
CVE-2015-2590
CVE-2015-2601
CVE-2015-2621
CVE-2015-2625
CVE-2015-2628
CVE-2015-2632
CVE-2015-2808
CVE-2015-4731
CVE-2015-4732
CVE-2015-4733
CVE-2015-4748
CVE-2015-4749
CVE-2015-4760

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) java-1.7.0-openjdk-1.7.0.85-2.6.1.3.0.1.el5_11.src.rpmc5fcca926441851f979fe4270e754910ELSA-2017-0269
java-1.7.0-openjdk-1.7.0.85-2.6.1.3.0.1.el5_11.i386.rpmfec4bafb43265430804da17334defe38ELSA-2017-0269
java-1.7.0-openjdk-demo-1.7.0.85-2.6.1.3.0.1.el5_11.i386.rpm10743328571e5315b9a724072b64780bELSA-2017-0269
java-1.7.0-openjdk-devel-1.7.0.85-2.6.1.3.0.1.el5_11.i386.rpm82fa41a32c54e8230174679930fc1544ELSA-2017-0269
java-1.7.0-openjdk-javadoc-1.7.0.85-2.6.1.3.0.1.el5_11.i386.rpmf7e84d20214a969691ec0edfdb14bf06ELSA-2017-0269
java-1.7.0-openjdk-src-1.7.0.85-2.6.1.3.0.1.el5_11.i386.rpme44cf65e7e4a0bc7bb9a3ce55018137fELSA-2017-0269
Oracle Linux 5 (x86_64) java-1.7.0-openjdk-1.7.0.85-2.6.1.3.0.1.el5_11.src.rpmc5fcca926441851f979fe4270e754910ELSA-2017-0269
java-1.7.0-openjdk-1.7.0.85-2.6.1.3.0.1.el5_11.x86_64.rpm4fc2e77afbb3331b9cf7cafa232e2e2fELSA-2017-0269
java-1.7.0-openjdk-demo-1.7.0.85-2.6.1.3.0.1.el5_11.x86_64.rpm132add83dcad7ccfb14b7764b11dad07ELSA-2017-0269
java-1.7.0-openjdk-devel-1.7.0.85-2.6.1.3.0.1.el5_11.x86_64.rpm3865cd0e94c17673a7c1d7417d527852ELSA-2017-0269
java-1.7.0-openjdk-javadoc-1.7.0.85-2.6.1.3.0.1.el5_11.x86_64.rpmc4aad17c96b4c40d6558f2f192094107ELSA-2017-0269
java-1.7.0-openjdk-src-1.7.0.85-2.6.1.3.0.1.el5_11.x86_64.rpm4901f9321402e4987518ca9230847b22ELSA-2017-0269



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete