java-1.8.0-openjdk-1.8.0.101-3.b13.AXS4

エラータID: AXSA:2016-570:06

Release date: 
Wednesday, July 20, 2016 - 20:04
Subject: 
java-1.8.0-openjdk-1.8.0.101-3.b13.AXS4
Affected Channels: 
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity: 
High
Description: 

The OpenJDK runtime environment.

Security issues fixed with this release:

CVE-2016-3458
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-3500
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-3508
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-3550
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-3587
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-3598
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-3606
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2016-3610
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.

Solution: 

Update packages.

CVEs: 
CVE-2016-3458
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; and Java SE Embedded 8u91 allows remote attackers to affect integrity via vectors related to CORBA.
CVE-2016-3500
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2016-3508.
CVE-2016-3508
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2016-3500.
CVE-2016-3550
Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality via vectors related to Hotspot.
CVE-2016-3587
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
CVE-2016-3598
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3610.
CVE-2016-3606
Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.
CVE-2016-3610
Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3598.
Additional Info: 

N/A

Download: 

SRPMS
  1. java-1.8.0-openjdk-1.8.0.101-3.b13.AXS4.src.rpm
    MD5: 4c88b0a50c0610cb01fb99980a6f2481
    SHA-256: c57608724b9f801670a73aa4694addaacb3e86af3a767843b0a5e901b31c8d77
    Size: 52.51 MB

Asianux Server 4 for x86
  1. java-1.8.0-openjdk-1.8.0.101-3.b13.AXS4.i686.rpm
    MD5: ee71f710624b556c7eba02a4dfde6a15
    SHA-256: f69902735c7b0994609037a03c7a0394e921a52c05dac64eb82c88b78189d424
    Size: 182.06 kB
  2. java-1.8.0-openjdk-devel-1.8.0.101-3.b13.AXS4.i686.rpm
    MD5: e4139062dc602edb553da3cdd9da93c1
    SHA-256: 1118230b917c57b63580c23612978d8456c0510c495f53f3e8f3d5947a0dbcdb
    Size: 10.04 MB
  3. java-1.8.0-openjdk-headless-1.8.0.101-3.b13.AXS4.i686.rpm
    MD5: 2d2fcc30014d3d2e1da0346646f49c57
    SHA-256: 75a540364ebc0ad48b8811785fa6360d546197e2146563921769a5ed0805208e
    Size: 31.14 MB

Asianux Server 4 for x86_64
  1. java-1.8.0-openjdk-1.8.0.101-3.b13.AXS4.x86_64.rpm
    MD5: ff554739e2fbabf9299e308e2b2bc21c
    SHA-256: 2d982563ffc935d8028585765798e78fa5771f62b297627e6581d7b77c746514
    Size: 195.80 kB
  2. java-1.8.0-openjdk-devel-1.8.0.101-3.b13.AXS4.x86_64.rpm
    MD5: 7c7632f3c4b3c10740bf0ba4d2283236
    SHA-256: acac283e00cd2746d57016f22678445eec951ba768184698ce7d6c54557230dd
    Size: 10.04 MB
  3. java-1.8.0-openjdk-headless-1.8.0.101-3.b13.AXS4.x86_64.rpm
    MD5: 983fb9d69788a4621d61c6ed34f7cde8
    SHA-256: ea5c53feae47bdda045cd7c9043a498dcd84666dd740c4cbc1872d99c70862aa
    Size: 31.78 MB