Oval Definition:oval:org.mitre.oval:def:28599
Revision Date:2015-08-17Version:9
Title:RHSA-2015:0806 -- java-1.7.0-openjdk security update (Critical)
Description:The java-1.7.0-openjdk packages provide the OpenJDK 7 Java RuntimeEnvironment and the OpenJDK 7 Java Software Development Kit.An off-by-one flaw, leading to a buffer overflow, was found in the fontparsing code in the 2D component in OpenJDK. A specially crafted font filecould possibly cause the Java Virtual Machine to execute arbitrary code,allowing an untrusted Java application or applet to bypass Java sandboxrestrictions. (CVE-2015-0469)
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2015:0806-CentOS 6
CESA-2015:0806-CentOS 7
CVE-2005-1080
CVE-2015-0460
CVE-2015-0469
CVE-2015-0477
CVE-2015-0478
CVE-2015-0480
CVE-2015-0488
RHSA-2015:0806
Platform(s):CentOS Linux 6
CentOS Linux 7
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Product(s):java-1.7.0-openjdk
Definition Synopsis
  • Red Hat Enterprise Linux 6 and CentOS Linux 6 release section
  • Operation system section
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • OR The operating system installed on the system is CentOS Linux 6.x
  • AND Packages match section
  • java-1.7.0-openjdk is earlier than 1:1.7.0.79-2.5.5.1.el6_6
  • OR java-1.7.0-openjdk-demo is earlier than 1:1.7.0.79-2.5.5.1.el6_6
  • OR java-1.7.0-openjdk-devel is earlier than 1:1.7.0.79-2.5.5.1.el6_6
  • OR java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.79-2.5.5.1.el6_6
  • OR java-1.7.0-openjdk-src is earlier than 1:1.7.0.79-2.5.5.1.el6_6
  • Red Hat Enterprise Linux 6 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • AND java-1.7.0-openjdk-debuginfo is earlier than 1:1.7.0.79-2.5.5.1.el6_6
  • Red Hat Enterprise Linux 7 and CentOS Linux 7 release section
  • Operation system section
  • The operating system installed on the system is Red Hat Enterprise Linux 7
  • OR The operating system installed on the system is CentOS Linux 7.x
  • AND Packages match section
  • java-1.7.0-openjdk is earlier than 1:1.7.0.79-2.5.5.1.el7_1
  • OR java-1.7.0-openjdk-accessibility is earlier than 1:1.7.0.79-2.5.5.1.el7_1
  • OR java-1.7.0-openjdk-demo is earlier than 1:1.7.0.79-2.5.5.1.el7_1
  • OR java-1.7.0-openjdk-devel is earlier than 1:1.7.0.79-2.5.5.1.el7_1
  • OR java-1.7.0-openjdk-headless is earlier than 1:1.7.0.79-2.5.5.1.el7_1
  • OR java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.79-2.5.5.1.el7_1
  • OR java-1.7.0-openjdk-src is earlier than 1:1.7.0.79-2.5.5.1.el7_1
  • Red Hat Enterprise Linux 7 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 7
  • AND java-1.7.0-openjdk-debuginfo is earlier than 1:1.7.0.79-2.5.5.1.el7_1
    • BACK