Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Pat Riehecky <riehecky-13hema8v3vg <at> public.gmane.org>
Subject: Security ERRATA Important: java-1.7.0-openjdk on SL5.x, SL6.x i386/x86_64
Newsgroups: gmane.linux.scientific.errata
Date: Wednesday 20th February 2013 19:16:32 UTC (over 3 years ago)
Synopsis:          Important: java-1.7.0-openjdk security update
Issue Date:        2013-02-20
CVE Numbers:       CVE-2013-0169
                    CVE-2013-1486
                    CVE-2013-1484
                    CVE-2013-1485
--

Multiple improper permission check issues were discovered in the JMX and
Libraries components in OpenJDK. An untrusted Java application or applet 
could
use these flaws to bypass Java sandbox restrictions. (CVE-2013-1486,
CVE-2013-1484)

An improper permission check issue was discovered in the Libraries 
component in
OpenJDK. An untrusted Java application or applet could use this flaw to 
bypass
certain Java sandbox restrictions. (CVE-2013-1485)

It was discovered that OpenJDK leaked timing information when decrypting
TLS/SSL protocol encrypted records when CBC-mode cipher suites were used. A
remote attacker could possibly use this flaw to retrieve plain text from
the
encrypted packets by using a TLS/SSL server as a padding oracle.
(CVE-2013-0169)

This erratum also upgrades the OpenJDK package to IcedTea7 2.3.7.
All running instances of OpenJDK Java must be restarted for the update 
to take
effect.
--

SL5
   x86_64
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
   i386
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.i386.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.i386.rpm
SL6
   x86_64
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
   i386
     java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el6_3.i686.rpm
     java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el6_3.i686.rpm
   noarch
     java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el6_3.noarch.rpm

- Scientific Linux Development Team
 
CD: 5ms