SUSE Security Update: Security update for java-1_7_0-openjdk ______________________________________________________________________________ Announcement ID: SUSE-SU-2015:0336-1 Rating: important References: #914041 Cross-References: CVE-2014-3566 CVE-2014-6549 CVE-2014-6585 CVE-2014-6587 CVE-2014-6591 CVE-2014-6593 CVE-2014-6601 CVE-2015-0383 CVE-2015-0395 CVE-2015-0400 CVE-2015-0403 CVE-2015-0406 CVE-2015-0407 CVE-2015-0408 CVE-2015-0410 CVE-2015-0412 CVE-2015-0413 CVE-2015-0421 CVE-2015-0437 Affected Products: SUSE Linux Enterprise Desktop 11 SP3 ______________________________________________________________________________ An update that fixes 19 vulnerabilities is now available. It includes one version update. Description: java-1_7_0-openjdk was updated to fix 19 security issues. Details are available at http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#A ppendixJAVA <http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html# AppendixJAVA> Security Issues: * CVE-2014-6601 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6601 * CVE-2015-0412 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0412 * CVE-2014-6549 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6549 * CVE-2015-0408 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0408 * CVE-2015-0395 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0395 * CVE-2015-0437 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0437 * CVE-2015-0403 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0403 * CVE-2015-0421 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0421 * CVE-2015-0406 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0406 * CVE-2015-0383 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0383 * CVE-2015-0400 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0400 * CVE-2015-0407 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0407 * CVE-2015-0410 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0410 * CVE-2014-6587 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6587 * CVE-2014-3566 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566 * CVE-2014-6593 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6593 * CVE-2014-6585 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585 * CVE-2014-6591 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591 * CVE-2015-0413 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0413 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Desktop 11 SP3: zypper in -t patch sledsp3-java-1_7_0-openjdk=10286 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Desktop 11 SP3 (i586 x86_64) [New Version: 1.7.0.75]: java-1_7_0-openjdk-1.7.0.75-0.7.1 java-1_7_0-openjdk-demo-1.7.0.75-0.7.1 java-1_7_0-openjdk-devel-1.7.0.75-0.7.1 References: http://support.novell.com/security/cve/CVE-2014-3566.html http://support.novell.com/security/cve/CVE-2014-6549.html http://support.novell.com/security/cve/CVE-2014-6585.html http://support.novell.com/security/cve/CVE-2014-6587.html http://support.novell.com/security/cve/CVE-2014-6591.html http://support.novell.com/security/cve/CVE-2014-6593.html http://support.novell.com/security/cve/CVE-2014-6601.html http://support.novell.com/security/cve/CVE-2015-0383.html http://support.novell.com/security/cve/CVE-2015-0395.html http://support.novell.com/security/cve/CVE-2015-0400.html http://support.novell.com/security/cve/CVE-2015-0403.html http://support.novell.com/security/cve/CVE-2015-0406.html http://support.novell.com/security/cve/CVE-2015-0407.html http://support.novell.com/security/cve/CVE-2015-0408.html http://support.novell.com/security/cve/CVE-2015-0410.html http://support.novell.com/security/cve/CVE-2015-0412.html http://support.novell.com/security/cve/CVE-2015-0413.html http://support.novell.com/security/cve/CVE-2015-0421.html http://support.novell.com/security/cve/CVE-2015-0437.html https://bugzilla.suse.com/914041 http://download.suse.com/patch/finder/?keywords=8d9a18b0ce3289f724b64f4b4dcc... -- To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security-announce+help@opensuse.org