RHSA-2012:0508Critical

Red Hat Security Advisory: java-1.5.0-ibm security update

Published
April 23, 2012
Last Modified
June 27, 2026

🔗 CVE IDs covered (12)

📋 Description

CVE-2011-3389 — HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) CVE-2011-3557 — OpenJDK: RMI registry privileged code execution (RMI, 7083012) CVE-2011-3560 — OpenJDK: missing checkSetFactory calls in HttpsURLConnection (JSSE, 7096936) CVE-2011-3563 — OpenJDK: JavaSound incorrect bounds check (Sound, 7088367) CVE-2012-0498 — JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D) CVE-2012-0499 — JDK: unspecified vulnerability fixed in 6u31 and 7u3 (2D) CVE-2012-0501 — OpenJDK: off-by-one bug in ZIP reading code (JRE, 7118283) CVE-2012-0502 — OpenJDK: KeyboardFocusManager focus stealing (AWT, 7110683) CVE-2012-0503 — OpenJDK: unrestricted use of TimeZone.setDefault() (i18n, 7110687) CVE-2012-0505 — OpenJDK: incomplete info in the deserialization exception (Serialization, 7110700) CVE-2012-0506 — OpenJDK: mutable repository identifiers (CORBA, 7110704) CVE-2012-0507 — OpenJDK: AtomicReferenceArray insufficient array type check (Concurrency, 7082299)

🔗 References (16)