SUSE-SU-2012:1204-1: important: Security update for IBM Java
sle-security-updates at lists.suse.com
sle-security-updates at lists.suse.com
Tue Sep 18 07:08:38 MDT 2012
SUSE Security Update: Security update for IBM Java
______________________________________________________________________________
Announcement ID: SUSE-SU-2012:1204-1
Rating: important
References: #666744 #771808 #773021 #778629
Cross-References: CVE-2012-1713 CVE-2012-1716 CVE-2012-1717
CVE-2012-1718 CVE-2012-1719 CVE-2012-1725
Affected Products:
SUSE Linux Enterprise Server 10 SP4
SUSE Linux Enterprise Java 10 SP4
SUSE Linux Enterprise Desktop 10 SP4
______________________________________________________________________________
An update that fixes 6 vulnerabilities is now available.
Description:
IBM Java 1.5.0 was updated to SR14 fixing bugs and security
issues.
http://www.ibm.com/developerworks/java/jdk/alerts/
<http://www.ibm.com/developerworks/java/jdk/alerts/>
Also three bugs have been fixed:
* fix bnc#771808: create symlink /usr/bin/javaws
properly
* fix bnc#666744: mark all configuration files as
%config(noreplace)
* fix bnc#773021: add code removing fonts symlink to
baselibs.conf
Security Issue references:
* CVE-2012-1717
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1717
>
* CVE-2012-1716
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1716
>
* CVE-2012-1713
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1713
>
* CVE-2012-1719
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1719
>
* CVE-2012-1718
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1718
>
* CVE-2012-1725
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1725
>
Package List:
- SUSE Linux Enterprise Server 10 SP4 (i586 ppc s390x x86_64):
java-1_5_0-ibm-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-fonts-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Server 10 SP4 (s390x x86_64):
java-1_5_0-ibm-32bit-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-32bit-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Server 10 SP4 (i586 ppc):
java-1_5_0-ibm-jdbc-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-plugin-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Server 10 SP4 (x86_64):
java-1_5_0-ibm-alsa-32bit-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Server 10 SP4 (i586):
java-1_5_0-ibm-alsa-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Server 10 SP4 (ppc):
java-1_5_0-ibm-64bit-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Java 10 SP4 (i586 ppc s390x x86_64):
java-1_5_0-ibm-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-fonts-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Java 10 SP4 (ppc):
java-1_5_0-ibm-jdbc-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-plugin-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):
java-1_5_0-ibm-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-demo-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-fonts-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-src-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Desktop 10 SP4 (x86_64):
java-1_5_0-ibm-32bit-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-alsa-32bit-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-devel-32bit-1.5.0_sr14.0-0.9.1
- SUSE Linux Enterprise Desktop 10 SP4 (i586):
java-1_5_0-ibm-alsa-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-jdbc-1.5.0_sr14.0-0.9.1
java-1_5_0-ibm-plugin-1.5.0_sr14.0-0.9.1
References:
http://support.novell.com/security/cve/CVE-2012-1713.html
http://support.novell.com/security/cve/CVE-2012-1716.html
http://support.novell.com/security/cve/CVE-2012-1717.html
http://support.novell.com/security/cve/CVE-2012-1718.html
http://support.novell.com/security/cve/CVE-2012-1719.html
http://support.novell.com/security/cve/CVE-2012-1725.html
https://bugzilla.novell.com/666744
https://bugzilla.novell.com/771808
https://bugzilla.novell.com/773021
https://bugzilla.novell.com/778629
http://download.novell.com/patch/finder/?keywords=458527f9aa3426cff56a9eb352661d4a
More information about the sle-security-updates
mailing list