RHSA-2016:1458

Description

Red Hat Security Advisory: java-1.8.0-openjdk security update

CVSS Metrics

• v3.0•HIGH•Score: 8.8CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Systems

• redhat•java-1.8.0-openjdk

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-accessibility

  < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-accessibility-debug

  < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-debug

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-debuginfo

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-demo

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-demo-debug

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-devel

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-devel-debug

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-headless

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-headless-debug

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-javadoc

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-javadoc-debug

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-src

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

• redhat•java-1.8.0-openjdk-src-debug

  < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el6_8 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2 | < 1:1.8.0.101-3.b13.el7_2

References (36)

• https://access.redhat.com/errata/RHSA-2016:1458
• https://access.redhat.com/security/updates/classification/#critical
• https://bugzilla.redhat.com/show_bug.cgi?id=1356963
• https://bugzilla.redhat.com/show_bug.cgi?id=1356971
• https://bugzilla.redhat.com/show_bug.cgi?id=1356987
• https://bugzilla.redhat.com/show_bug.cgi?id=1356994
• https://bugzilla.redhat.com/show_bug.cgi?id=1357008
• https://bugzilla.redhat.com/show_bug.cgi?id=1357015
• https://bugzilla.redhat.com/show_bug.cgi?id=1357494
• https://bugzilla.redhat.com/show_bug.cgi?id=1357506
• https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_1458.json
• https://access.redhat.com/security/cve/CVE-2016-3458
• https://www.cve.org/CVERecord?id=CVE-2016-3458
• https://nvd.nist.gov/vuln/detail/CVE-2016-3458
• http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixJAVA
• https://access.redhat.com/security/cve/CVE-2016-3500
• https://www.cve.org/CVERecord?id=CVE-2016-3500
• https://nvd.nist.gov/vuln/detail/CVE-2016-3500
• https://access.redhat.com/security/cve/CVE-2016-3508
• https://www.cve.org/CVERecord?id=CVE-2016-3508
• https://nvd.nist.gov/vuln/detail/CVE-2016-3508
• https://access.redhat.com/security/cve/CVE-2016-3550
• https://www.cve.org/CVERecord?id=CVE-2016-3550
• https://nvd.nist.gov/vuln/detail/CVE-2016-3550
• https://access.redhat.com/security/cve/CVE-2016-3587
• https://www.cve.org/CVERecord?id=CVE-2016-3587
• https://nvd.nist.gov/vuln/detail/CVE-2016-3587
• https://access.redhat.com/security/cve/CVE-2016-3598
• https://www.cve.org/CVERecord?id=CVE-2016-3598
• https://nvd.nist.gov/vuln/detail/CVE-2016-3598
• https://access.redhat.com/security/cve/CVE-2016-3606
• https://www.cve.org/CVERecord?id=CVE-2016-3606
• https://nvd.nist.gov/vuln/detail/CVE-2016-3606
• https://access.redhat.com/security/cve/CVE-2016-3610
• https://www.cve.org/CVERecord?id=CVE-2016-3610
• https://nvd.nist.gov/vuln/detail/CVE-2016-3610