Security update for java-1_7_1-ibm (important)

2016-05-1316:09:03

lists.opensuse.org

0.078 Low

EPSS

Percentile

93.5%

JSON

This IBM Java 1.7.1 SR3 FP40 relese fixes the following issues:

Security issues fixed:

CVE-2016-0264: buffer overflow vulnerability in the IBM JVM (bsc#977648)
CVE-2016-0363: insecure use of invoke method in CORBA component,
incorrect CVE-2013-3009 fix (bsc#977650)
CVE-2016-0376: insecure deserialization in CORBA, incorrect
CVE-2013-5456 fix (bsc#977646)
The following CVEs got also fixed during this update. (bsc#979252)
CVE-2016-3443, CVE-2016-0687, CVE-2016-0686, CVE-2016-3427,
CVE-2016-3449, CVE-2016-3422, CVE-2016-3426

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Software Development Kit11.4ppc64java-1_7_1-ibm-devel< 1.7.1_sr3.40-13.1java-1_7_1-ibm-devel-1.7.1_sr3.40-13.1.ppc64.rpm
SUSE Linux Enterprise Server11.4ppc64java-1_7_1-ibm< 1.7.1_sr3.40-13.1java-1_7_1-ibm-1.7.1_sr3.40-13.1.ppc64.rpm
SUSE Linux Enterprise Software Development Kit11.4s390xjava-1_7_1-ibm-devel< 1.7.1_sr3.40-13.1java-1_7_1-ibm-devel-1.7.1_sr3.40-13.1.s390x.rpm
SUSE Linux Enterprise Server11.4x86_64java-1_7_1-ibm-alsa< 1.7.1_sr3.40-13.1java-1_7_1-ibm-alsa-1.7.1_sr3.40-13.1.x86_64.rpm
SUSE Linux Enterprise Server11.4ppc64java-1_7_1-ibm-jdbc< 1.7.1_sr3.40-13.1java-1_7_1-ibm-jdbc-1.7.1_sr3.40-13.1.ppc64.rpm
SUSE Linux Enterprise Server11.4i586java-1_7_1-ibm-alsa< 1.7.1_sr3.40-13.1java-1_7_1-ibm-alsa-1.7.1_sr3.40-13.1.i586.rpm
SUSE Linux Enterprise Software Development Kit11.4i586java-1_7_1-ibm-devel< 1.7.1_sr3.40-13.1java-1_7_1-ibm-devel-1.7.1_sr3.40-13.1.i586.rpm
SUSE Linux Enterprise Server11.4x86_64java-1_7_1-ibm-jdbc< 1.7.1_sr3.40-13.1java-1_7_1-ibm-jdbc-1.7.1_sr3.40-13.1.x86_64.rpm
SUSE Linux Enterprise Server11.4x86_64java-1_7_1-ibm-plugin< 1.7.1_sr3.40-13.1java-1_7_1-ibm-plugin-1.7.1_sr3.40-13.1.x86_64.rpm
SUSE Linux Enterprise Server11.4i586java-1_7_1-ibm-jdbc< 1.7.1_sr3.40-13.1java-1_7_1-ibm-jdbc-1.7.1_sr3.40-13.1.i586.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Linux Enterprise Software Development Kit	11.4	ppc64	java-1_7_1-ibm-devel	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-devel-1.7.1_sr3.40-13.1.ppc64.rpm
SUSE Linux Enterprise Server	11.4	ppc64	java-1_7_1-ibm	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-1.7.1_sr3.40-13.1.ppc64.rpm
SUSE Linux Enterprise Software Development Kit	11.4	s390x	java-1_7_1-ibm-devel	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-devel-1.7.1_sr3.40-13.1.s390x.rpm
SUSE Linux Enterprise Server	11.4	x86_64	java-1_7_1-ibm-alsa	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-alsa-1.7.1_sr3.40-13.1.x86_64.rpm
SUSE Linux Enterprise Server	11.4	ppc64	java-1_7_1-ibm-jdbc	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-jdbc-1.7.1_sr3.40-13.1.ppc64.rpm
SUSE Linux Enterprise Server	11.4	i586	java-1_7_1-ibm-alsa	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-alsa-1.7.1_sr3.40-13.1.i586.rpm
SUSE Linux Enterprise Software Development Kit	11.4	i586	java-1_7_1-ibm-devel	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-devel-1.7.1_sr3.40-13.1.i586.rpm
SUSE Linux Enterprise Server	11.4	x86_64	java-1_7_1-ibm-jdbc	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-jdbc-1.7.1_sr3.40-13.1.x86_64.rpm
SUSE Linux Enterprise Server	11.4	x86_64	java-1_7_1-ibm-plugin	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-plugin-1.7.1_sr3.40-13.1.x86_64.rpm
SUSE Linux Enterprise Server	11.4	i586	java-1_7_1-ibm-jdbc	< 1.7.1_sr3.40-13.1	java-1_7_1-ibm-jdbc-1.7.1_sr3.40-13.1.i586.rpm