java security update

ID CESA-2016:0511
Type centos
Reporter CentOS Project
Modified 2016-03-25T03:42:05


CentOS Errata and Security Advisory CESA-2016:0511

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit for compiling and executing Java programs.

Security Fix(es):

  • An improper type safety check was discovered in the Hotspot component. An untrusted Java application or applet could use this flaw to bypass Java Sandbox restrictions. (CVE-2016-0636)

Merged security bulletin from advisories:

Affected packages: java-1.7.0-openjdk java-1.7.0-openjdk-demo java-1.7.0-openjdk-devel java-1.7.0-openjdk-javadoc java-1.7.0-openjdk-src

Upstream details at: