(RHSA-2010:0987) Critical: java-1.6.0-ibm security and bug fix update

The IBM 1.6.0 Java release includes the IBM Java 2 Runtime Environment and
the IBM Java 2 Software Development Kit.

This update fixes several vulnerabilities in the IBM Java 2 Runtime
Environment. Detailed vulnerability descriptions are linked from the IBM
“Security alerts” page, listed in the References section. (CVE-2009-3555,
CVE-2010-1321, CVE-2010-3541, CVE-2010-3548, CVE-2010-3549, CVE-2010-3550,
CVE-2010-3551, CVE-2010-3553, CVE-2010-3555, CVE-2010-3556, CVE-2010-3557,
CVE-2010-3558, CVE-2010-3560, CVE-2010-3562, CVE-2010-3563, CVE-2010-3565,
CVE-2010-3566, CVE-2010-3568, CVE-2010-3569, CVE-2010-3571, CVE-2010-3572,
CVE-2010-3573, CVE-2010-3574)

This update also fixes the following bugs:

• An error in the java-1.6.0-ibm RPM spec file caused an incorrect path to
  be included in HtmlConverter, preventing it from running. (BZ#659716)

• On AMD64 and Intel 64 systems, if only the 64-bit java-1.6.0-ibm packages
  were installed, IBM Java 6 Web Start was not available as an application
  that could open JNLP (Java Network Launching Protocol) files. This affected
  file management and web browser tools. Users had to manually open them with
  the “/usr/lib/jvm/jre-1.6.0-ibm.x86_64/bin/javaws” command. This update
  resolves this issue. (BZ#633341)

All users of java-1.6.0-ibm are advised to upgrade to these updated
packages, containing the IBM 1.6.0 SR9 Java release. All running instances
of IBM Java must be restarted for the update to take effect.