Red Hat Security Advisory: java-1.7.0-oracle security update
🔗 CVE IDs covered (12)
📋 Description
CVE-2005-1080 — jar: directory traversal vulnerability CVE-2015-0458 — JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment) CVE-2015-0459 — JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D) CVE-2015-0460 — OpenJDK: incorrect handling of phantom references (Hotspot, 8071931) CVE-2015-0469 — ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699) CVE-2015-0477 — OpenJDK: incorrect permissions check in resource loading (Beans, 8068320) CVE-2015-0478 — OpenJDK: insufficient hardening of RSA-CRT implementation (JCE, 8071726) CVE-2015-0480 — OpenJDK: jar directory traversal issues (Tools, 8064601) CVE-2015-0484 — JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX) CVE-2015-0488 — OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720) CVE-2015-0491 — JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D) CVE-2015-0492 — JDK: unspecified vulnerability fixed in 7u79 and 8u45 (JavaFX)
🔗 References (16)
- selfhttps://access.redhat.com/errata/RHSA-2015:0857
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttp://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixJAVA
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=606442
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1210355
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1210829
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211285
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211299
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211504
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211543
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211768
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211769
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211770
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211771
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1211773
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0857.json