SUSE Security Update: Security update for java-1_7_0-openjdk ______________________________________________________________________________ Announcement ID: SUSE-SU-2015:0336-1 Rating: important References: #914041 Cross-References: CVE-2014-3566 CVE-2014-6549 CVE-2014-6585 CVE-2014-6587 CVE-2014-6591 CVE-2014-6593 CVE-2014-6601 CVE-2015-0383 CVE-2015-0395 CVE-2015-0400 CVE-2015-0403 CVE-2015-0406 CVE-2015-0407 CVE-2015-0408 CVE-2015-0410 CVE-2015-0412 CVE-2015-0413 CVE-2015-0421 CVE-2015-0437 Affected Products: SUSE Linux Enterprise Desktop 11 SP3 ______________________________________________________________________________ An update that fixes 19 vulnerabilities is now available. It includes one version update. Description: java-1_7_0-openjdk was updated to fix 19 security issues. Details are available at http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#A ppendixJAVA <http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html# AppendixJAVA> Security Issues: * CVE-2014-6601 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6601> * CVE-2015-0412 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0412> * CVE-2014-6549 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6549> * CVE-2015-0408 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0408> * CVE-2015-0395 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0395> * CVE-2015-0437 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0437> * CVE-2015-0403 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0403> * CVE-2015-0421 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0421> * CVE-2015-0406 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0406> * CVE-2015-0383 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0383> * CVE-2015-0400 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0400> * CVE-2015-0407 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0407> * CVE-2015-0410 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0410> * CVE-2014-6587 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6587> * CVE-2014-3566 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566> * CVE-2014-6593 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6593> * CVE-2014-6585 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6585> * CVE-2014-6591 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6591> * CVE-2015-0413 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0413> Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Desktop 11 SP3: zypper in -t patch sledsp3-java-1_7_0-openjdk=10286 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Desktop 11 SP3 (i586 x86_64) [New Version: 1.7.0.75]: java-1_7_0-openjdk-1.7.0.75-0.7.1 java-1_7_0-openjdk-demo-1.7.0.75-0.7.1 java-1_7_0-openjdk-devel-1.7.0.75-0.7.1 References: http://support.novell.com/security/cve/CVE-2014-3566.html http://support.novell.com/security/cve/CVE-2014-6549.html http://support.novell.com/security/cve/CVE-2014-6585.html http://support.novell.com/security/cve/CVE-2014-6587.html http://support.novell.com/security/cve/CVE-2014-6591.html http://support.novell.com/security/cve/CVE-2014-6593.html http://support.novell.com/security/cve/CVE-2014-6601.html http://support.novell.com/security/cve/CVE-2015-0383.html http://support.novell.com/security/cve/CVE-2015-0395.html http://support.novell.com/security/cve/CVE-2015-0400.html http://support.novell.com/security/cve/CVE-2015-0403.html http://support.novell.com/security/cve/CVE-2015-0406.html http://support.novell.com/security/cve/CVE-2015-0407.html http://support.novell.com/security/cve/CVE-2015-0408.html http://support.novell.com/security/cve/CVE-2015-0410.html http://support.novell.com/security/cve/CVE-2015-0412.html http://support.novell.com/security/cve/CVE-2015-0413.html http://support.novell.com/security/cve/CVE-2015-0421.html http://support.novell.com/security/cve/CVE-2015-0437.html https://bugzilla.suse.com/914041 http://download.suse.com/patch/finder/?keywords=8d9a18b0ce3289f724b64f4b4dcc... -- To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security-announce+help@opensuse.org