lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Date: Mon, 7 Nov 2016 19:31:05 +0100
From: Moritz Muehlenhoff <jmm@...ian.org>
To: bugtraq@...urityfocus.com
Subject: [SECURITY] [DSA 3707-1] openjdk-7 security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3707-1                   security@...ian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
November 07, 2016                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-7
CVE ID         : CVE-2016-5542 CVE-2016-5554 CVE-2016-5573 CVE-2016-5582
                 CVE-2016-5597

Several vulnerabilities have been discovered in OpenJDK, an
implementation of the Oracle Java platform, resulting in breakouts
of the Java sandbox or denial of service.

For the stable distribution (jessie), this problem has been fixed in
version 7u111-2.6.7-2~deb8u1.

We recommend that you upgrade your openjdk-7 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@...ts.debian.org
-----BEGIN PGP SIGNATURE-----
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=gGs3
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ