This IBM Java 1.6.0 SR16 FP25 release fixes the following issues:
Security issues fixed:
* CVE-2016-0264: buffer overflow vulnerability in the IBM JVM
(bsc#977648)
* CVE-2016-0363: insecure use of invoke method in CORBA component,
incorrect CVE-2013-3009 fix (bsc#977650)
* CVE-2016-0376: insecure deserialization in CORBA, incorrect
CVE-2013-5456 fix (bsc#977646)
* The following CVEs got also fixed during this update. (bsc#979252)
CVE-2016-3443, CVE-2016-0687, CVE-2016-0686, CVE-2016-3427,
CVE-2016-3449, CVE-2016-3422, CVE-2016-3426
Security Issues:
* CVE-2016-0376
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0376">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0376</a>>
* CVE-2016-0363
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0363">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0363</a>>
* CVE-2016-0264
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0264">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0264</a>>
* CVE-2016-3443
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3443">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3443</a>>
* CVE-2016-0687
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0687">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0687</a>>
* CVE-2016-0686
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0686">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0686</a>>
* CVE-2016-3427
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3427">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3427</a>>
* CVE-2016-3449
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3449">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3449</a>>
* CVE-2016-3422
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3422">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3422</a>>
* CVE-2016-3426
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3426">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3426</a>>