Oval Definition:oval:com.redhat.rhsa:def:20121225
Revision Date:2012-09-04Version:502
Title:RHSA-2012:1225: java-1.7.0-oracle security update (Critical)
Description:The Oracle Java 7 release includes the Oracle Java 7 Runtime Environment and the Oracle Java 7 Software Development Kit.

  • This update fixes several vulnerabilities in the Oracle Java 7 Runtime Environment and the Oracle Java 7 Software Development Kit. Further information about these flaws can be found on the Oracle Java SE Security Alert page, listed in the References section. (CVE-2012-4681, CVE-2012-1682, CVE-2012-3136, CVE-2012-0547)

    Red Hat is aware that a public exploit for CVE-2012-4681 is available that executes code without user interaction when a user visits a malicious web page using a browser with the Oracle Java 7 web browser plug-in enabled.

    All users of java-1.7.0-oracle are advised to upgrade to these updated packages, which provide Oracle Java 7 Update 7 and resolve these issues. All running instances of Oracle Java must be restarted for the update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2012-0547
    CVE-2012-1682
    CVE-2012-3136
    CVE-2012-4681
    RHSA-2012:1225-01
    Platform(s):Supplementary for Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND Package Information
  • java-1.7.0-oracle is earlier than 1:1.7.0.7-1jpp.5.el6_3
  • AND java-1.7.0-oracle is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-src is earlier than 1:1.7.0.7-1jpp.5.el6_3
  • AND java-1.7.0-oracle-src is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-plugin is earlier than 1:1.7.0.7-1jpp.5.el6_3
  • AND java-1.7.0-oracle-plugin is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-jdbc is earlier than 1:1.7.0.7-1jpp.5.el6_3
  • AND java-1.7.0-oracle-jdbc is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-oracle-devel is earlier than 1:1.7.0.7-1jpp.5.el6_3
  • AND java-1.7.0-oracle-devel is signed with Red Hat redhatrelease2 key
    • BACK