lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Fri, 30 Jan 2015 16:57:23 +0100
From: Moritz Muehlenhoff <jmm@...ian.org>
To: bugtraq@...urityfocus.com
Subject: [SECURITY] [DSA 3147-1] openjdk-6 security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3147-1                   security@...ian.org
http://www.debian.org/security/                        Moritz Muehlenhoff
January 30, 2015                       http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-6
CVE ID         : CVE-2014-3566 CVE-2014-6585 CVE-2014-6587 CVE-2014-6591 
                 CVE-2014-6593 CVE-2014-6601 CVE-2015-0383 CVE-2015-0395
                 CVE-2015-0407 CVE-2015-0408 CVE-2015-0410 CVE-2015-0412

Several vulnerabilities have been discovered in OpenJDK, an
implementation of the Oracle Java platform, resulting in the execution
of arbitrary code, information disclosure or denial of service.

For the stable distribution (wheezy), these problems have been fixed in
version 6b34-1.13.6-1~deb7u1.

We recommend that you upgrade your openjdk-6 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@...ts.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=t9cD
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ