Oval Definition:oval:com.redhat.rhsa:def:20141881
Revision Date:2014-11-20Version:602
Title:RHSA-2014:1881: java-1.5.0-ibm security update (Important)
Description:IBM J2SE version 5.0 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.

  • This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security alerts page, listed in the References section. (CVE-2014-3065, CVE-2014-3566, CVE-2014-6457, CVE-2014-6502, CVE-2014-6506, CVE-2014-6511, CVE-2014-6512, CVE-2014-6531, CVE-2014-6558)

    The CVE-2014-6512 issue was discovered by Florian Weimer of Red Hat Product Security.

    Note: With this update, the IBM SDK now disables the SSL 3.0 protocol to address the CVE-2014-3566 issue (also known as POODLE). Refer to the IBM article linked to in the References section for additional details about this change and instructions on how to re-enable SSL 3.0 support if needed.

    All users of java-1.5.0-ibm are advised to upgrade to these updated packages, containing the IBM J2SE 5.0 SR16-FP8 release. All running instances of IBM Java must be restarted for this update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2014-3065
    CVE-2014-3566
    CVE-2014-6457
    CVE-2014-6502
    CVE-2014-6506
    CVE-2014-6511
    CVE-2014-6512
    CVE-2014-6531
    CVE-2014-6558
    RHSA-2014:1881-01
    Platform(s):Supplementary for Red Hat Enterprise Linux 5
    Supplementary for Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • java-1.5.0-ibm is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm is signed with Red Hat redhatrelease key
  • java-1.5.0-ibm-accessibility is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm-accessibility is signed with Red Hat redhatrelease key
  • java-1.5.0-ibm-demo is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm-demo is signed with Red Hat redhatrelease key
  • java-1.5.0-ibm-devel is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm-devel is signed with Red Hat redhatrelease key
  • java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm-javacomm is signed with Red Hat redhatrelease key
  • java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm-jdbc is signed with Red Hat redhatrelease key
  • java-1.5.0-ibm-plugin is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm-plugin is signed with Red Hat redhatrelease key
  • java-1.5.0-ibm-src is earlier than 1:1.5.0.16.8-1jpp.1.el5
  • AND java-1.5.0-ibm-src is signed with Red Hat redhatrelease key
  • OR Package Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND
  • java-1.5.0-ibm is earlier than 1:1.5.0.16.8-1jpp.1.el6_6
  • AND java-1.5.0-ibm is signed with Red Hat redhatrelease2 key
  • java-1.5.0-ibm-demo is earlier than 1:1.5.0.16.8-1jpp.1.el6_6
  • AND java-1.5.0-ibm-demo is signed with Red Hat redhatrelease2 key
  • java-1.5.0-ibm-devel is earlier than 1:1.5.0.16.8-1jpp.1.el6_6
  • AND java-1.5.0-ibm-devel is signed with Red Hat redhatrelease2 key
  • java-1.5.0-ibm-javacomm is earlier than 1:1.5.0.16.8-1jpp.1.el6_6
  • AND java-1.5.0-ibm-javacomm is signed with Red Hat redhatrelease2 key
  • java-1.5.0-ibm-jdbc is earlier than 1:1.5.0.16.8-1jpp.1.el6_6
  • AND java-1.5.0-ibm-jdbc is signed with Red Hat redhatrelease2 key
  • java-1.5.0-ibm-plugin is earlier than 1:1.5.0.16.8-1jpp.1.el6_6
  • AND java-1.5.0-ibm-plugin is signed with Red Hat redhatrelease2 key
  • java-1.5.0-ibm-src is earlier than 1:1.5.0.16.8-1jpp.1.el6_6
  • AND java-1.5.0-ibm-src is signed with Red Hat redhatrelease2 key
    • BACK