10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.968 High
EPSS
Percentile
99.6%
The IBM 1.6.0 Java release includes the IBM Java 2 Runtime Environment and
the IBM Java 2 Software Development Kit.
This update fixes several vulnerabilities in the IBM Java 2 Runtime
Environment and the IBM Java 2 Software Development Kit. Detailed
vulnerability descriptions are linked from the IBM “Security alerts” page,
listed in the References section. (CVE-2010-4422, CVE-2010-4447,
CVE-2010-4448, CVE-2010-4452, CVE-2010-4454, CVE-2010-4462, CVE-2010-4463,
CVE-2010-4465, CVE-2010-4466, CVE-2010-4467, CVE-2010-4468, CVE-2010-4471,
CVE-2010-4473, CVE-2010-4475)
Note: The RHSA-2010:0987 and RHSA-2011:0290 java-1.6.0-ibm errata were
missing 64-bit PowerPC packages for Red Hat Enterprise Linux 4 Extras. This
erratum provides 64-bit PowerPC packages for Red Hat Enterprise Linux 4
Extras as expected.
All users of java-1.6.0-ibm are advised to upgrade to these updated
packages, containing the IBM 1.6.0 SR9-FP1 Java release. All running
instances of IBM Java must be restarted for the update to take effect.