LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Kernel prepatch 3.9-rc6

LWN.net Weekly Edition for April 4, 2013

LWN.net Weekly Edition for March 28, 2013

A kernel change breaks GlusterFS

PyCon: Evangelizing Python

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

openSUSE alert openSUSE-SU-2013:0199-1 (java-1_7_0-openjdk)



From:
    	      opensuse-security@opensuse.org 


To:
    	      opensuse-updates@opensuse.org 


Subject:
    	      openSUSE-SU-2013:0199-1: critical: java-1_7_0-openjdk: update to icedtea-2.3.4 


Date:
    	      Fri, 25 Jan 2013 14:04:23 +0100 (CET)


Message-ID:
    	      <20130125130423.6DDEF321CD@maintenance.suse.de>


Archive-link:
    	      Article, Thread
              


   openSUSE Security Update: java-1_7_0-openjdk: update to icedtea-2.3.4
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2013:0199-1
Rating:             critical
References:         #792951 #798324 #798521 
Cross-References:   CVE-2012-3174 CVE-2013-0422
Affected Products:
                    openSUSE 12.2
______________________________________________________________________________

   An update that solves two vulnerabilities and has one
   errata is now available.

Description:


   java-1_7_0-openjdk was updated to icedtea-2.3.4 fixing bugs
   and  also severe security issues:

   * Security fixes
   - S8004933, CVE-2012-3174: Improve MethodHandle
   interaction with libraries
   - S8006017, CVE-2013-0422: Improve lookup resolutions
   - S8006125: Update MethodHandles library interactions

   * Bug fixes
   - S7197906: BlockOffsetArray::power_to_cards_back() needs
   to handle &gt; 32 bit shifts
   - G422525: Fix building with PaX enabled kernels.
   - use gpg-offline to check the validity of icedtea tarball

   - use jamvm on %arm
   - use icedtea package name instead of protected openjdk for
   jamvm builds
   - fix armv5 build

   - update to java access bridge 1.26.2
   * bugfix release, mainly 64bit JNI and JVM support

   - fix a segfault in AWT code - (bnc#792951)
   * add openjdk-7-src-b147-awt-crasher.patch
   - turn pulseaudio off on pre 11.4 distros


Patch Instructions:

   To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - openSUSE 12.2:

      zypper in -t patch openSUSE-2013-47

   To bring your system up-to-date, use "zypper patch".


Package List:

   - openSUSE 12.2 (i586 x86_64):

      java-1_7_0-openjdk-1.7.0.6-3.20.1
      java-1_7_0-openjdk-debuginfo-1.7.0.6-3.20.1
      java-1_7_0-openjdk-debugsource-1.7.0.6-3.20.1
      java-1_7_0-openjdk-demo-1.7.0.6-3.20.1
      java-1_7_0-openjdk-demo-debuginfo-1.7.0.6-3.20.1
      java-1_7_0-openjdk-devel-1.7.0.6-3.20.1
      java-1_7_0-openjdk-devel-debuginfo-1.7.0.6-3.20.1
      java-1_7_0-openjdk-javadoc-1.7.0.6-3.20.1
      java-1_7_0-openjdk-src-1.7.0.6-3.20.1


References:

   http://support.novell.com/security/cve/CVE-2012-3174.html
   http://support.novell.com/security/cve/CVE-2013-0422.html
   https://bugzilla.novell.com/792951
   https://bugzilla.novell.com/798324
   https://bugzilla.novell.com/798521
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds