SUSE-SU-2014:1055-2: moderate: Security update for IBM Java

[sle-security-updates at lists.suse.com]

   SUSE Security Update: Security update for IBM Java
______________________________________________________________________________

Announcement ID:    SUSE-SU-2014:1055-2
Rating:             moderate
References:         #891700 
Cross-References:   CVE-2014-4209 CVE-2014-4218 CVE-2014-4219
                    CVE-2014-4227 CVE-2014-4244 CVE-2014-4252
                    CVE-2014-4262 CVE-2014-4263 CVE-2014-4265
                    CVE-2014-4268
Affected Products:
                    SUSE Manager 1.7 for SLE 11 SP2
______________________________________________________________________________

   An update that fixes 10 vulnerabilities is now available.

Description:


   java-1_6_0-ibm has been updated to fix ten security issues.

   Security Issues:

       * CVE-2014-4227
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4227>
       * CVE-2014-4262
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4262>
       * CVE-2014-4219
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4219>
       * CVE-2014-4209
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4209>
       * CVE-2014-4268
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4268>
       * CVE-2014-4218
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4218>
       * CVE-2014-4252
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4252>
       * CVE-2014-4265
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4265>
       * CVE-2014-4263
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4263>
       * CVE-2014-4244
         <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4244>


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Manager 1.7 for SLE 11 SP2:

      zypper in -t patch sleman17sp2-java-1_6_0-ibm-9614

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Manager 1.7 for SLE 11 SP2 (x86_64):

      java-1_6_0-ibm-1.6.0_sr16.1-0.3.1
      java-1_6_0-ibm-devel-1.6.0_sr16.1-0.3.1
      java-1_6_0-ibm-fonts-1.6.0_sr16.1-0.3.1
      java-1_6_0-ibm-jdbc-1.6.0_sr16.1-0.3.1
      java-1_6_0-ibm-plugin-1.6.0_sr16.1-0.3.1


References:

   http://support.novell.com/security/cve/CVE-2014-4209.html
   http://support.novell.com/security/cve/CVE-2014-4218.html
   http://support.novell.com/security/cve/CVE-2014-4219.html
   http://support.novell.com/security/cve/CVE-2014-4227.html
   http://support.novell.com/security/cve/CVE-2014-4244.html
   http://support.novell.com/security/cve/CVE-2014-4252.html
   http://support.novell.com/security/cve/CVE-2014-4262.html
   http://support.novell.com/security/cve/CVE-2014-4263.html
   http://support.novell.com/security/cve/CVE-2014-4265.html
   http://support.novell.com/security/cve/CVE-2014-4268.html
   https://bugzilla.novell.com/891700
   http://download.suse.com/patch/finder/?keywords=7a61b835a32429a85d3cce40a1b17ad6