ELSA-2011-1380

ELSA-2011-1380 - java-1.6.0-openjdk security update

Type:SECURITY
Severity:CRITICAL
Release Date:2011-10-18

Description



[1:1.6.0.0-1.40.1.9.10]
- Resolves: rhbz#744788
- Bumped to IcedTea6 1.9.8
-removed font copying
Security fixes
- S7000600, CVE-2011-3547: InputStream skip() information leak
- S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor
- S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow
- S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager
- S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine
- S7055902, CVE-2011-3521: IIOP deserialization code execution
- S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks
- S7064341, CVE-2011-3389: JSSE
- S7070134, CVE-2011-3558: Hotspot unspecified issue
- S7077466, CVE-2011-3556: RMI DGC server remote code execution
- S7083012, CVE-2011-3557: RMI registry privileged code execution
- S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection
NetX
- PR794: javaws does not work if a Web Start app jar has a Class-Path element in the manifest


Related CVEs


CVE-2011-3389
CVE-2011-3521
CVE-2011-3544
CVE-2011-3547
CVE-2011-3548
CVE-2011-3551
CVE-2011-3552
CVE-2011-3553
CVE-2011-3554
CVE-2011-3556
CVE-2011-3557
CVE-2011-3558
CVE-2011-3560

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.src.rpm8bf6b1286d2b90739b283a19a0502c83ELSA-2017-0061
java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpmb5634facd91c10112a85c8395d69c3c9ELSA-2017-0061
java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm60cf486f789e266debd76badc2c5cae5ELSA-2017-0061
java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm153fe530c962e360955ee7bf7911ea22ELSA-2017-0061
java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpme8b401644f0d7d4202f848c0c994510dELSA-2017-0061
java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.0.1.el5_7.i386.rpm8851484b93f13e53b93be7f084c38fc2ELSA-2017-0061
Oracle Linux 5 (x86_64) java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.src.rpm8bf6b1286d2b90739b283a19a0502c83ELSA-2017-0061
java-1.6.0-openjdk-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpmc3aebd40b393983362f3d61339e7df9bELSA-2017-0061
java-1.6.0-openjdk-demo-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm2f040242caaecc089ca10d16c8ceaba7ELSA-2017-0061
java-1.6.0-openjdk-devel-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpmc23e961db4db57bb2cb158546ee09825ELSA-2017-0061
java-1.6.0-openjdk-javadoc-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm83c7274a6ba1e68c5cd2667c73853a8cELSA-2017-0061
java-1.6.0-openjdk-src-1.6.0.0-1.23.1.9.10.0.1.el5_7.x86_64.rpm77a849cd548d9b05c10a07e93d2bff7fELSA-2017-0061
Oracle Linux 6 (i386) java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.src.rpmc120394997e6ea501d193c59ff2aa4adELSA-2017-0061
java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm729e76a6e1a571813e8d4781f0cec47aELSA-2017-0061
java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm498674a282597de3afe73ad73446bb5cELSA-2017-0061
java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1.i686.rpmf708d46ea6c38b0813c3c2a6a64f3bceELSA-2017-0061
java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm13ab82523a295d5104423a2b24729d66ELSA-2017-0061
java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1.i686.rpm1360847cb8dfbfc681d21a6e9396a649ELSA-2017-0061
Oracle Linux 6 (x86_64) java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.src.rpmc120394997e6ea501d193c59ff2aa4adELSA-2017-0061
java-1.6.0-openjdk-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpmc589f72caa98fbefbe905a1a05c06cc1ELSA-2017-0061
java-1.6.0-openjdk-demo-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm50250625aec77c713da93c09ac330765ELSA-2017-0061
java-1.6.0-openjdk-devel-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm06d89a4a7bc83516fad0dffc4332073cELSA-2017-0061
java-1.6.0-openjdk-javadoc-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm532ab0b43c9b6618bb152d3975a71504ELSA-2017-0061
java-1.6.0-openjdk-src-1.6.0.0-1.40.1.9.10.el6_1.x86_64.rpm3813fb7c58e3860c3b398758e3910413ELSA-2017-0061



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete