Mailinglist Archive: opensuse-security-announce (37 mails)

< Previous Next >
[security-announce] SUSE-SU-2012:1204-1: important: Security update for IBM Java
SUSE Security Update: Security update for IBM Java
______________________________________________________________________________

Announcement ID: SUSE-SU-2012:1204-1
Rating: important
References: #666744 #771808 #773021 #778629
Cross-References: CVE-2012-1713 CVE-2012-1716 CVE-2012-1717
CVE-2012-1718 CVE-2012-1719 CVE-2012-1725

Affected Products:
SUSE Linux Enterprise Server 10 SP4
SUSE Linux Enterprise Java 10 SP4
SUSE Linux Enterprise Desktop 10 SP4
______________________________________________________________________________

An update that fixes 6 vulnerabilities is now available.

Description:


IBM Java 1.5.0 was updated to SR14 fixing bugs and security
issues.

http://www.ibm.com/developerworks/java/jdk/alerts/
<http://www.ibm.com/developerworks/java/jdk/alerts/>

Also three bugs have been fixed:

* fix bnc#771808: create symlink /usr/bin/javaws
properly
* fix bnc#666744: mark all configuration files as
%config(noreplace)
* fix bnc#773021: add code removing fonts symlink to
baselibs.conf

Security Issue references:

* CVE-2012-1717
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1717
>
* CVE-2012-1716
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1716
>
* CVE-2012-1713
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1713
>
* CVE-2012-1719
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1719
>
* CVE-2012-1718
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1718
>
* CVE-2012-1725
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1725
>



Package List:

- SUSE Linux Enterprise Server 10 SP4 (i586 ppc s390x x86_64):

java-1_5_0-ibm-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-fonts-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Server 10 SP4 (s390x x86_64):

java-1_5_0-ibm-32bit-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-32bit-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Server 10 SP4 (i586 ppc):

java-1_5_0-ibm-jdbc-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-plugin-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Server 10 SP4 (x86_64):

java-1_5_0-ibm-alsa-32bit-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Server 10 SP4 (i586):

java-1_5_0-ibm-alsa-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Server 10 SP4 (ppc):

java-1_5_0-ibm-64bit-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Java 10 SP4 (i586 ppc s390x x86_64):

java-1_5_0-ibm-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-fonts-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Java 10 SP4 (ppc):

java-1_5_0-ibm-jdbc-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-plugin-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):

java-1_5_0-ibm-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-demo-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-fonts-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-src-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Desktop 10 SP4 (x86_64):

java-1_5_0-ibm-32bit-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-alsa-32bit-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-32bit-1.5.0_sr14.0-0.9.1

- SUSE Linux Enterprise Desktop 10 SP4 (i586):

java-1_5_0-ibm-alsa-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-jdbc-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-plugin-1.5.0_sr14.0-0.9.1


References:

http://support.novell.com/security/cve/CVE-2012-1713.html
http://support.novell.com/security/cve/CVE-2012-1716.html
http://support.novell.com/security/cve/CVE-2012-1717.html
http://support.novell.com/security/cve/CVE-2012-1718.html
http://support.novell.com/security/cve/CVE-2012-1719.html
http://support.novell.com/security/cve/CVE-2012-1725.html
https://bugzilla.novell.com/666744
https://bugzilla.novell.com/771808
https://bugzilla.novell.com/773021
https://bugzilla.novell.com/778629

http://download.novell.com/patch/finder/?keywords=458527f9aa3426cff56a9eb352661d4a

--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-security-announce+help@xxxxxxxxxxxx

< Previous Next >
This Thread
  • No further messages