Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP1:GA
patchinfo.394
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.394
<patchinfo incident="393"> <issue id="916266" tracker="bnc">VUL-0: CVE-2014-8891: java-1_7_1-ibm,java-1_5_0-ibm,java-1_7_0-ibm,java-1_6_0-ibm: Unspecified vulnerability</issue> <issue id="901239" tracker="bnc">VUL-0: java: Oracle Oct 2014 patchday - java-ibm tracker bug</issue> <issue id="904889" tracker="bnc">VUL-0: CVE-2014-3065: java-1_4_2-ibm, java-1_7_0-ibm, java-1_6_0-ibm, java-1_4_2-ibm-sap, java-1_5_0-ibm, java-1_7_1-ibm: IBM Security Update November 2014</issue> <issue id="916265" tracker="bnc">VUL-0: CVE-2014-8892: java-1_7_1-ibm,java-1_5_0-ibm,java-1_7_0-ibm,java-1_6_0-ibm: Unspecified vulnerability</issue> <issue id="901223" tracker="bnc">VUL-0: CVE-2014-3566: openssl: SSLv3 POODLE attack</issue> <issue id="901242" tracker="bnc"></issue> <issue id="901246" tracker="bnc"></issue> <issue id="CVE-2014-6457" tracker="cve" /> <issue id="CVE-2014-6456" tracker="cve" /> <issue id="CVE-2014-6532" tracker="cve" /> <issue id="CVE-2014-6476" tracker="cve" /> <issue id="CVE-2014-6531" tracker="cve" /> <issue id="CVE-2014-6458" tracker="cve" /> <issue id="CVE-2014-6493" tracker="cve" /> <issue id="CVE-2014-6492" tracker="cve" /> <issue id="CVE-2014-3065" tracker="cve" /> <issue id="CVE-2014-3566" tracker="cve" /> <issue id="CVE-2014-6466" tracker="cve" /> <issue id="CVE-2014-6503" tracker="cve" /> <issue id="CVE-2014-6502" tracker="cve" /> <issue id="CVE-2014-6527" tracker="cve" /> <issue id="CVE-2014-6506" tracker="cve" /> <issue id="CVE-2014-4288" tracker="cve" /> <issue id="CVE-2014-8892" tracker="cve" /> <issue id="CVE-2014-8891" tracker="cve" /> <issue id="CVE-2014-6558" tracker="cve" /> <issue id="CVE-2014-6515" tracker="cve" /> <issue id="CVE-2014-6511" tracker="cve" /> <issue id="CVE-2014-6512" tracker="cve" /> <issue id="CVE-2014-6513" tracker="cve" /> <category>security</category> <rating>important</rating> <packager>scarabeus_iv</packager> <description>java-1_7_0-ibm was updated to fix 23 security issues. These security issues were fixed: - CVE-2014-6457: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3, and R28.3.3 allowed remote attackers to affect confidentiality and integrity via vectors related to JSSE (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6456: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6532: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6503 (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6476: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allowed remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6527 (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6531: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allowed remote attackers to affect confidentiality via unknown vectors related to Libraries (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6458: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allowed local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6493: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6503, and CVE-2014-6532 (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6492: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Firefox, allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-3065: Unspecified vulnerability in IBM Java Runtime Environment (JRE) 7 R1 before SR2 (7.1.2.0), 7 before SR8 (7.0.8.0), 6 R1 before SR8 FP2 (6.1.8.2), 6 before SR16 FP2 (6.0.16.2), and before SR16 FP8 (5.0.16.8) allowed local users to execute arbitrary code via vectors related to the shared classes cache (bnc#904889). - CVE-2014-3566: The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, used nondeterministic CBC padding, which made it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue (bnc#901223). - CVE-2014-6466: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, when running on Internet Explorer, allowed local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6503: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-4288, CVE-2014-6493, and CVE-2014-6532 (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6502: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allowed remote attackers to affect integrity via unknown vectors related to Libraries (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6527: Unspecified vulnerability in Oracle Java SE 7u67 and 8u20 allowed remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6476 (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6506: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-4288: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532 (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-8892: Unspecified vulnerability (bnc#916265). - CVE-2014-8891: Unspecified vulnerability (bnc#916266). - CVE-2014-6558: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allowed remote attackers to affect integrity via unknown vectors related to Security (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6515: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allowed remote attackers to affect integrity via unknown vectors related to Deployment (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6511: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20 allowed remote attackers to affect confidentiality via unknown vectors related to 2D (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6512: Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and R28.3.3 allowed remote attackers to affect integrity via unknown vectors related to Libraries (bnc#901239, bnc#901242, bnc#901246, bnc#904889). - CVE-2014-6513: Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20, and Java SE Embedded 7u60, allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT (bnc#901239, bnc#901242, bnc#901246, bnc#904889). </description> <summary>Security update for java-1_7_0-ibm</summary> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor