Oval Definition:oval:com.redhat.rhsa:def:20131060
Revision Date:2013-07-15Version:502
Title:RHSA-2013:1060: java-1.7.0-ibm security update (Critical)
Description:IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.

  • This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security alerts page, listed in the References section. (CVE-2013-1500, CVE-2013-1571, CVE-2013-2400, CVE-2013-2407, CVE-2013-2412, CVE-2013-2437, CVE-2013-2442, CVE-2013-2444, CVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2449, CVE-2013-2450, CVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455, CVE-2013-2456, CVE-2013-2457, CVE-2013-2458, CVE-2013-2459, CVE-2013-2460, CVE-2013-2462, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465, CVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, CVE-2013-2473, CVE-2013-3744)

    Red Hat would like to thank Tim Brown for reporting CVE-2013-1500, and US-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the original reporter of CVE-2013-1571.

    All users of java-1.7.0-ibm are advised to upgrade to these updated packages, containing the IBM Java SE 7 SR5 release. All running instances of IBM Java must be restarted for the update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2013-1500
    CVE-2013-1571
    CVE-2013-2400
    CVE-2013-2407
    CVE-2013-2412
    CVE-2013-2437
    CVE-2013-2442
    CVE-2013-2444
    CVE-2013-2446
    CVE-2013-2447
    CVE-2013-2448
    CVE-2013-2449
    CVE-2013-2450
    CVE-2013-2451
    CVE-2013-2452
    CVE-2013-2453
    CVE-2013-2454
    CVE-2013-2455
    CVE-2013-2456
    CVE-2013-2457
    CVE-2013-2458
    CVE-2013-2459
    CVE-2013-2460
    CVE-2013-2462
    CVE-2013-2463
    CVE-2013-2464
    CVE-2013-2465
    CVE-2013-2466
    CVE-2013-2468
    CVE-2013-2469
    CVE-2013-2470
    CVE-2013-2471
    CVE-2013-2472
    CVE-2013-2473
    CVE-2013-3006
    CVE-2013-3007
    CVE-2013-3008
    CVE-2013-3009
    CVE-2013-3010
    CVE-2013-3011
    CVE-2013-3012
    CVE-2013-3744
    CVE-2013-4002
    RHSA-2013:1060-01
    Platform(s):Supplementary for Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND Package Information
  • java-1.7.0-ibm-devel is earlier than 1:1.7.0.5.0-1jpp.2.el6_4
  • AND java-1.7.0-ibm-devel is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-ibm is earlier than 1:1.7.0.5.0-1jpp.2.el6_4
  • AND java-1.7.0-ibm is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-ibm-demo is earlier than 1:1.7.0.5.0-1jpp.2.el6_4
  • AND java-1.7.0-ibm-demo is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-ibm-plugin is earlier than 1:1.7.0.5.0-1jpp.2.el6_4
  • AND java-1.7.0-ibm-plugin is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-ibm-jdbc is earlier than 1:1.7.0.5.0-1jpp.2.el6_4
  • AND java-1.7.0-ibm-jdbc is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.7.0-ibm-src is earlier than 1:1.7.0.5.0-1jpp.2.el6_4
  • AND java-1.7.0-ibm-src is signed with Red Hat redhatrelease2 key
    • BACK