Oval Definition:oval:com.redhat.rhsa:def:20150080
Revision Date:2017-12-15Version:602
Title:RHSA-2015:0080: java-1.8.0-oracle security update (Critical)
Description:Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.

  • This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page, listed in the References section. (CVE-2014-3566, CVE-2014-6549, CVE-2014-6585, CVE-2014-6587, CVE-2014-6591, CVE-2014-6593, CVE-2014-6601, CVE-2015-0383, CVE-2015-0395, CVE-2015-0403, CVE-2015-0406, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410, CVE-2015-0412, CVE-2015-0413, CVE-2015-0421, CVE-2015-0437)

    The CVE-2015-0383 issue was discovered by Red Hat.

    Note: With this update, the Oracle Java SE now disables the SSL 3.0 protocol to address the CVE-2014-3566 issue (also known as POODLE). Refer to the Red Hat Bugzilla bug linked to in the References section for instructions on how to re-enable SSL 3.0 support if needed.

    All users of java-1.8.0-oracle are advised to upgrade to these updated packages, which provide Oracle Java 8 Update 31 and resolve these issues. All running instances of Oracle Java must be restarted for the update to take effect.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2014-3566
    CVE-2014-6549
    CVE-2014-6585
    CVE-2014-6587
    CVE-2014-6591
    CVE-2014-6593
    CVE-2014-6601
    CVE-2015-0383
    CVE-2015-0395
    CVE-2015-0403
    CVE-2015-0406
    CVE-2015-0407
    CVE-2015-0408
    CVE-2015-0410
    CVE-2015-0412
    CVE-2015-0413
    CVE-2015-0421
    CVE-2015-0437
    RHSA-2015:0080-00
    RHSA-2015:0080-01
    Platform(s):Oracle Java for Red Hat Enterprise Linux 6
    Product(s):
    Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND Package Information
  • java-1.8.0-oracle is earlier than 1:1.8.0.31-1jpp.1.el6
  • AND java-1.8.0-oracle is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.8.0-oracle-devel is earlier than 1:1.8.0.31-1jpp.1.el6
  • AND java-1.8.0-oracle-devel is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.8.0-oracle-javafx is earlier than 1:1.8.0.31-1jpp.1.el6
  • AND java-1.8.0-oracle-javafx is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.8.0-oracle-jdbc is earlier than 1:1.8.0.31-1jpp.1.el6
  • AND java-1.8.0-oracle-jdbc is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.8.0-oracle-plugin is earlier than 1:1.8.0.31-1jpp.1.el6
  • AND java-1.8.0-oracle-plugin is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.8.0-oracle-src is earlier than 1:1.8.0.31-1jpp.1.el6
  • AND java-1.8.0-oracle-src is signed with Red Hat redhatrelease2 key
  • BACK