Overview

File _patchinfo of Package patchinfo.5216

<patchinfo incident="5216">
  <packager>mgorse</packager>
 <issue tracker="bnc" id="1052318">Crash expanding stack on ia32 w/recent kernels</issue>
  <issue tracker="bnc" id="1064084">VUL-0: CVE-2017-10356: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Security</issue>
  <issue tracker="bnc" id="1064071">VUL-0: CVE-2017-10274: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Smart Card IO</issue>
  <issue tracker="bnc" id="1064072">VUL-0: CVE-2017-10281: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Serialization</issue>
  <issue tracker="bnc" id="1064073">VUL-0: CVE-2017-10285: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent RMI</issue>
  <issue tracker="bnc" id="1064075">VUL-0: CVE-2017-10295: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Networking</issue>
  <issue tracker="bnc" id="1064086">VUL-0: CVE-2017-10388: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Libraries</issue>
  <issue tracker="bnc" id="1064078">VUL-0: CVE-2017-10346: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Hotspot</issue>
  <issue tracker="bnc" id="1064082">VUL-0: CVE-2017-10350: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent JAX-WS</issue>
  <issue tracker="bnc" id="1064079">VUL-0: CVE-2017-10347: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Serialization</issue>
  <issue tracker="bnc" id="1064081">VUL-0: CVE-2017-10349: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent JAXP</issue>
  <issue tracker="bnc" id="1064077">VUL-0: CVE-2017-10345: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Serialization</issue>
  <issue tracker="bnc" id="1064080">VUL-0: CVE-2017-10348: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Libraries</issue>
  <issue tracker="bnc" id="1064085">VUL-0: CVE-2017-10357: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Serialization</issue>
  <issue tracker="bnc" id="1064083">VUL-0: CVE-2017-10355: java-1_8_0-openjdk,java-1_7_0-openjdk: issue inside subcomponent Networking</issue>
  <issue tracker="bnc" id="1049316">VUL-0: CVE-2017-10102: java-1_8_0-openjdk,java-1_7_0-openjdk: Incorrect handling of references in DGC</issue>
  <issue tracker="bnc" id="1049305">VUL-0: CVE-2017-10053: java-1_8_0-openjdk,java-1_7_0-openjdk: Reading of unprocessed image data in JPEGImageReader</issue>
  <issue tracker="bnc" id="1049306">VUL-0: CVE-2017-10067: java-1_8_0-openjdk,java-1_7_0-openjdk: JAR verifier incorrect handling of missing digest</issue>
  <issue tracker="bnc" id="1049309">VUL-0: CVE-2017-10081: java-1_8_0-openjdk,java-1_7_0-openjdk: Incorrect bracket processing in function signature handling</issue>
  <issue tracker="bnc" id="1049311">VUL-0: CVE-2017-10087: java-1_8_0-openjdk,java-1_7_0-openjdk: Insufficient access control checks in ThreadPoolExecutor</issue>
  <issue tracker="bnc" id="1049312">VUL-0: CVE-2017-10089: java-1_8_0-openjdk,java-1_7_0-openjdk: Insufficient access control checks in ServiceRegistry</issue>
  <issue tracker="bnc" id="1049313">VUL-0: CVE-2017-10090: java-1_8_0-openjdk,java-1_7_0-openjdk: Insufficient access control checks in AsynchronousChannelGroupImpl</issue>
  <issue tracker="bnc" id="1049314">VUL-0: CVE-2017-10096: java-1_8_0-openjdk,java-1_7_0-openjdk: Insufficient access control checks in XML transformations</issue>
  <issue tracker="bnc" id="1049315">VUL-0: CVE-2017-10101: java-1_8_0-openjdk,java-1_7_0-openjdk: Unrestricted access to com.sun.org.apache.xml.internal.resolver</issue>
  <issue tracker="bnc" id="1049318">VUL-0: CVE-2017-10107: java-1_8_0-openjdk,java-1_7_0-openjdk: Insufficient access control checks in ActivationID</issue>
  <issue tracker="bnc" id="1049307">VUL-0: CVE-2017-10074: java-1_8_0-openjdk,java-1_7_0-openjdk: Integer overflows in range check loop predicates</issue>
  <issue tracker="bnc" id="1049321">VUL-0: CVE-2017-10110: java-1_8_0-openjdk,java-1_7_0-openjdk: Insufficient access control checks in ImageWatched</issue>
  <issue tracker="bnc" id="1049319">VUL-0: CVE-2017-10108: java-1_8_0-openjdk,java-1_7_0-openjdk: Unbounded memory allocation in BasicAttribute deserialization</issue>
  <issue tracker="bnc" id="1049320">VUL-0: CVE-2017-10109: java-1_8_0-openjdk,java-1_7_0-openjdk: Unbounded memory allocation in CodeSource deserialization</issue>
  <issue tracker="bnc" id="1049324">VUL-0: CVE-2017-10115: java-1_8_0-openjdk,java-1_7_0-openjdk: Unspecified vulnerability in subcomponent JCE</issue>
  <issue tracker="bnc" id="1049326">VUL-0: CVE-2017-10118: java-1_8_0-openjdk,java-1_7_0-openjdk: ECDSA implementation timing attack</issue>
  <issue tracker="bnc" id="1049325">VUL-0: CVE-2017-10116: java-1_8_0-openjdk,java-1_7_0-openjdk: LDAPCertStore following referrals to non-LDAP URL</issue>
  <issue tracker="bnc" id="1049328">VUL-0: CVE-2017-10135: java-1_8_0-openjdk,java-1_7_0-openjdk: PKCS#8 implementation timing attack</issue>
  <issue tracker="bnc" id="1049329">VUL-0: CVE-2017-10176: java-1_8_0-openjdk,java-1_7_0-openjdk: Incorrect handling of certain EC points</issue>
  <issue tracker="bnc" id="1049307">VUL-0: CVE-2017-10074: java-1_8_0-openjdk,java-1_7_0-openjdk: Integer overflows in range check loop predicates</issue>
  <issue tracker="bnc" id="1049307">VUL-0: CVE-2017-10074: java-1_8_0-openjdk,java-1_7_0-openjdk: Integer overflows in range check loop predicates</issue>
  <issue tracker="bnc" id="1049322">VUL-0: CVE-2017-10111: java-1_8_0-openjdk: Incorrect range checks in LambdaFormEditor</issue>
  <issue tracker="bnc" id="1049332">VUL-0: CVE-2017-10243: java-1_8_0-openjdk,java-1_7_0-openjdk: Unspecified vulnerability in subcomponent JAX-WS</issue>
  <issue tracker="bnc" id="1049327">VUL-0: CVE-2017-10125: java-1_8_0-openjdk,java-1_7_0-openjdk: Unspecified vulnerability in subcomponent deployment</issue>
  <issue tracker="bnc" id="1049323">VUL-0: CVE-2017-10114: java-1_8_0-openjdk,java-1_7_0-openjdk: Unspecified vulnerability in subcomponent JavaFX</issue>
  <issue tracker="bnc" id="1049317">VUL-0: CVE-2017-10105: java-1_8_0-openjdk,java-1_7_0-openjdk: Unspecified vulnerability in subcomponent deployment</issue>
  <issue tracker="bnc" id="1049310">VUL-0: CVE-2017-10086: java-1_8_0-openjdk,java-1_7_0-openjdk: Unspecified in subcomponent JavaFX</issue>
  <issue tracker="bnc" id="1049331">VUL-0: CVE-2017-10198: java-1_8_0-openjdk,java-1_7_0-openjdk: Incorrect enforcement of certificate path restrictions</issue>
  <issue tracker="bnc" id="1049330">VUL-0: CVE-2017-10193: java-1_8_0-openjdk,java-1_7_0-openjdk: Incorrect key size constraint check</issue>
  <issue tracker="cve" id="2017-10356"></issue>
  <issue tracker="cve" id="2017-10274"></issue>
  <issue tracker="cve" id="2017-10281"></issue>
  <issue tracker="cve" id="2017-10285"></issue>
  <issue tracker="cve" id="2017-10295"></issue>
  <issue tracker="cve" id="2017-10388"></issue>
  <issue tracker="cve" id="2017-10346"></issue>
  <issue tracker="cve" id="2017-10350"></issue>
  <issue tracker="cve" id="2017-10347"></issue>
  <issue tracker="cve" id="2017-10349"></issue>
  <issue tracker="cve" id="2017-10345"></issue>
  <issue tracker="cve" id="2017-10348"></issue>
  <issue tracker="cve" id="2017-10357"></issue>
  <issue tracker="cve" id="2017-10355"></issue>
  <issue tracker="cve" id="2017-10102"></issue>
  <issue tracker="cve" id="2017-10053"></issue>
  <issue tracker="cve" id="2017-10067"></issue>
  <issue tracker="cve" id="2017-10081"></issue>
  <issue tracker="cve" id="2017-10087"></issue>
  <issue tracker="cve" id="2017-10089"></issue>
  <issue tracker="cve" id="2017-10090"></issue>
  <issue tracker="cve" id="2017-10096"></issue>
  <issue tracker="cve" id="2017-10101"></issue>
  <issue tracker="cve" id="2017-10107"></issue>
  <issue tracker="cve" id="2017-10074"></issue>
  <issue tracker="cve" id="2017-10110"></issue>
  <issue tracker="cve" id="2017-10108"></issue>
  <issue tracker="cve" id="2017-10109"></issue>
  <issue tracker="cve" id="2017-10115"></issue>
  <issue tracker="cve" id="2017-10118"></issue>
  <issue tracker="cve" id="2017-10116"></issue>
  <issue tracker="cve" id="2017-10135"></issue>
  <issue tracker="cve" id="2017-10176"></issue>
  <issue tracker="cve" id="2017-10074"></issue>
  <issue tracker="cve" id="2017-10074"></issue>
  <issue tracker="cve" id="2017-10111"></issue>
  <issue tracker="cve" id="2017-10243"></issue>
  <issue tracker="cve" id="2017-10125"></issue>
  <issue tracker="cve" id="2017-10114"></issue>
  <issue tracker="cve" id="2017-10105"></issue>
  <issue tracker="cve" id="2017-10086"></issue>
  <issue tracker="cve" id="2017-10198"></issue>
  <issue tracker="cve" id="2017-10193"></issue>
  <issue tracker="cve" id="2016-10165"></issue>
  <issue tracker="cve" id="2016-9840"></issue>
  <issue tracker="cve" id="2016-9841"></issue>
  <issue tracker="cve" id="2016-9842"></issue>
  <issue tracker="cve" id="2016-9843"></issue>
  <category>security</category>
  <rating>important</rating>
  <summary>Security update for java-1_7_0-openjdk</summary>
  <description>This update for java-1_7_0-openjdk fixes the following issues:

Security issues fixed:

- CVE-2017-10356: Fix issue inside subcomponent Security (bsc#1064084).
- CVE-2017-10274: Fix issue inside subcomponent Smart Card IO (bsc#1064071).
- CVE-2017-10281: Fix issue inside subcomponent Serialization (bsc#1064072).
- CVE-2017-10285: Fix issue inside subcomponent RMI (bsc#1064073).
- CVE-2017-10295: Fix issue inside subcomponent Networking (bsc#1064075).
- CVE-2017-10388: Fix issue inside subcomponent Libraries (bsc#1064086).
- CVE-2017-10346: Fix issue inside subcomponent Hotspot (bsc#1064078).
- CVE-2017-10350: Fix issue inside subcomponent JAX-WS (bsc#1064082).
- CVE-2017-10347: Fix issue inside subcomponent Serialization (bsc#1064079).
- CVE-2017-10349: Fix issue inside subcomponent JAXP (bsc#1064081).
- CVE-2017-10345: Fix issue inside subcomponent Serialization (bsc#1064077).
- CVE-2017-10348: Fix issue inside subcomponent Libraries (bsc#1064080).
- CVE-2017-10357: Fix issue inside subcomponent Serialization (bsc#1064085).
- CVE-2017-10355: Fix issue inside subcomponent Networking (bsc#1064083).
- CVE-2017-10102: Fix incorrect handling of references in DGC (bsc#1049316).
- CVE-2017-10053: Fix reading of unprocessed image data in JPEGImageReader (bsc#1049305).
- CVE-2017-10067: Fix JAR verifier incorrect handling of missing digest (bsc#1049306).
- CVE-2017-10081: Fix incorrect bracket processing in function signature handling (bsc#1049309).
- CVE-2017-10087: Fix insufficient access control checks in ThreadPoolExecutor (bsc#1049311).
- CVE-2017-10089: Fix insufficient access control checks in ServiceRegistry (bsc#1049312).
- CVE-2017-10090: Fix insufficient access control checks in AsynchronousChannelGroupImpl (bsc#1049313).
- CVE-2017-10096: Fix insufficient access control checks in XML transformations (bsc#1049314).
- CVE-2017-10101: Fix unrestricted access to com.sun.org.apache.xml.internal.resolver (bsc#1049315).
- CVE-2017-10107: Fix insufficient access control checks in ActivationID (bsc#1049318).
- CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
- CVE-2017-10110: Fix insufficient access control checks in ImageWatched (bsc#1049321).
- CVE-2017-10108: Fix unbounded memory allocation in BasicAttribute deserialization (bsc#1049319).
- CVE-2017-10109: Fix unbounded memory allocation in CodeSource deserialization (bsc#1049320).
- CVE-2017-10115: Fix unspecified vulnerability in subcomponent JCE (bsc#1049324).
- CVE-2017-10118: Fix ECDSA implementation timing attack (bsc#1049326).
- CVE-2017-10116: Fix LDAPCertStore following referrals to non-LDAP URL (bsc#1049325).
- CVE-2017-10135: Fix PKCS#8 implementation timing attack (bsc#1049328).
- CVE-2017-10176: Fix incorrect handling of certain EC points (bsc#1049329).
- CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
- CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
- CVE-2017-10111: Fix checks in LambdaFormEditor (bsc#1049322).
- CVE-2017-10243: Fix unspecified vulnerability in subcomponent JAX-WS (bsc#1049332).
- CVE-2017-10125: Fix unspecified vulnerability in subcomponent deployment (bsc#1049327).
- CVE-2017-10114: Fix unspecified vulnerability in subcomponent JavaFX (bsc#1049323).
- CVE-2017-10105: Fix unspecified vulnerability in subcomponent deployment (bsc#1049317).
- CVE-2017-10086: Fix unspecified in subcomponent JavaFX (bsc#1049310).
- CVE-2017-10198: Fix incorrect enforcement of certificate path restrictions (bsc#1049331).
- CVE-2017-10193: Fix incorrect key size constraint check (bsc#1049330).

Bug fixes:

- Drop Exec Shield workaround to fix crashes on recent kernels, where Exec Shield is gone (bsc#1052318).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places