Ubuntu alert USN-2942-1 (openjdk-7)
| From: | Jamie Strandboge <jamie@canonical.com> | |
| To: | "ubuntu-security-announce@lists.ubuntu.com" <ubuntu-security-announce@lists.ubuntu.com> | |
| Subject: | [USN-2942-1] OpenJDK 7 vulnerability | |
| Date: | Thu, 24 Mar 2016 20:10:35 -0500 | |
| Message-ID: | <1458868235.13824.1.camel@canonical.com> |
========================================================================== Ubuntu Security Notice USN-2942-1 March 24, 2016 openjdk-7 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 15.10 - Ubuntu 14.04 LTS Summary: OpenJDK could be made to crash or run programs as your login if it received specially crafted input. Software Description: - openjdk-7: Open Source Java implementation Details: A vulnerability was discovered in the JRE related to information disclosure, data integrity, and availability. An attacker could exploit these to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 15.10: icedtea-7-jre-jamvm 7u95-2.6.4-0ubuntu0.15.10.2 openjdk-7-jre 7u95-2.6.4-0ubuntu0.15.10.2 openjdk-7-jre-headless 7u95-2.6.4-0ubuntu0.15.10.2 openjdk-7-jre-lib 7u95-2.6.4-0ubuntu0.15.10.2 openjdk-7-jre-zero 7u95-2.6.4-0ubuntu0.15.10.2 Ubuntu 14.04 LTS: icedtea-7-jre-jamvm 7u95-2.6.4-0ubuntu0.14.04.2 openjdk-7-jdk 7u95-2.6.4-0ubuntu0.14.04.2 openjdk-7-jre 7u95-2.6.4-0ubuntu0.14.04.2 openjdk-7-jre-headless 7u95-2.6.4-0ubuntu0.14.04.2 openjdk-7-jre-lib 7u95-2.6.4-0ubuntu0.14.04.2 openjdk-7-jre-zero 7u95-2.6.4-0ubuntu0.14.04.2 This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart any Java applications or applets to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-2942-1 CVE-2016-0636 Package Information: https://launchpad.net/ubuntu/+source/openjdk-7/7u95-2.6.4... https://launchpad.net/ubuntu/+source/openjdk-7/7u95-2.6.4... -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security...