Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP2:GA
patchinfo.4795
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.4795
<patchinfo incident="4795"> <issue id="1038505" tracker="bnc">VUL-0: IBM Java May 2017 release</issue> <issue id="2017-3511" tracker="cve" /> <issue id="2017-1289" tracker="cve" /> <issue id="2016-9842" tracker="cve" /> <issue id="2016-9843" tracker="cve" /> <issue id="2017-3544" tracker="cve" /> <issue id="2017-3509" tracker="cve" /> <issue id="2017-3539" tracker="cve" /> <issue id="2016-9840" tracker="cve" /> <issue id="2017-3533" tracker="cve" /> <issue id="2016-9841" tracker="cve" /> <category>security</category> <rating>important</rating> <packager>scarabeus_iv</packager> <description> This update for java-1_8_0-ibm fixes the following issues: Version update bsc#1038505: - CVE-2016-9840: zlib: Out-of-bounds pointer arithmetic in inftrees.c - CVE-2016-9841: zlib: Out-of-bounds pointer arithmetic in inffast.c - CVE-2016-9842: zlib: Undefined left shift of negative number - CVE-2016-9843: zlib: Big-endian out-of-bounds pointer - CVE-2017-3544: OpenJDK: newline injection in the SMTP client - CVE-2017-3509: OpenJDK: improper re-use of NTLM authenticated connections - CVE-2017-3511: OpenJDK: untrusted extension directories search path in Launcher - CVE-2017-3533: OpenJDK: newline injection in the FTP client - CVE-2017-3539: OpenJDK: MD5 allowed for jar verification - CVE-2017-1289: IBM JDK: XML External Entity Injection (XXE) error when processing XML data </description> <summary>Security update for java-1_8_0-ibm</summary> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor