[SECURITY] [DSA 3458-1] openjdk-7 security update

2016-01-27T21:01:10
ID DEBIAN:DSA-3458-1:53966
Type debian
Reporter Debian
Modified 2016-01-27T21:01:10

Description


Debian Security Advisory DSA-3458-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff January 27, 2016 https://www.debian.org/security/faq


Package : openjdk-7 CVE ID : CVE-2015-7575 CVE-2016-0402 CVE-2016-0448 CVE-2016-0466 CVE-2016-0483 CVE-2016-0494

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in breakouts of the Java sandbox, information disclosur, denial of service and insecure cryptography.

For the oldstable distribution (wheezy), these problems have been fixed in version 7u95-2.6.4-1~deb7u1.

For the stable distribution (jessie), these problems have been fixed in version 7u95-2.6.4-1~deb8u1.

For the unstable distribution (sid), these problems have been fixed in version 7u95-2.6.4-1.

We recommend that you upgrade your openjdk-7 packages.

Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org