java-1.6.0-openjdk-1.6.0.39-1.13.11.0.0.1.el7.AXS7

エラータID: AXSA:2016-503:02

Release date: 
Monday, June 13, 2016 - 17:54
Subject: 
java-1.6.0-openjdk-1.6.0.39-1.13.11.0.0.1.el7.AXS7
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

The OpenJDK runtime environment.

Security issues fixed with this release:

CVE-2016-0686
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and
Java SE Embedded 8u77 allows remote attackers to affect
confidentiality, integrity, and availability via vectors related to
Serialization.
CVE-2016-0687
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and
Java SE Embedded 8u77 allows remote attackers to affect
confidentiality, integrity, and availability via vectors related to
the Hotspot sub-component.
CVE-2016-0695
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77;
Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to
affect confidentiality via vectors related to Security.
CVE-2016-3425
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77;
Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to
affect availability via vectors related to JAXP.
CVE-2016-3427
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77;
Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to
affect confidentiality, integrity, and availability via vectors
related to JMX.

Solution: 

Update packages.

CVEs: 
CVE-2016-0686
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization.
CVE-2016-0687
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component.
CVE-2016-0695
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality via vectors related to Security.
CVE-2016-3425
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect availability via vectors related to JAXP.
CVE-2016-3427
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.
Additional Info: 

N/A

Download: 

SRPMS
  1. java-1.6.0-openjdk-1.6.0.39-1.13.11.0.0.1.el7.AXS7.src.rpm
    MD5: 2be1dd7f1ee9fa3622f2544fb776b543
    SHA-256: 1f6eccb5b9d81295d557db100e2db9fb1b14281adc1f5da3b01aec9b4f1f902f
    Size: 36.34 MB

Asianux Server 7 for x86_64
  1. java-1.6.0-openjdk-1.6.0.39-1.13.11.0.0.1.el7.AXS7.x86_64.rpm
    MD5: 5a18b800d32ac3fa9046e9d703c75ced
    SHA-256: 106ec1c59a132185f5dc964a137f6793abfdbc850014d3188c080b22af7fd769
    Size: 41.72 MB
  2. java-1.6.0-openjdk-devel-1.6.0.39-1.13.11.0.0.1.el7.AXS7.x86_64.rpm
    MD5: 609558973d3e0f2451fd81f21e8888f3
    SHA-256: cb9f504e50f8c9daee49b62add3e8c3faa1fb4cbaf18c3cd47e5cace3d7b37d8
    Size: 14.52 MB