Important: java-1.7.0-openjdk (SL5, SL6)

By Scientific Linux Team on February 20, 2013

Synopsis: Important: java-1.7.0-openjdk security update
Issue Date: 2013-02-20
CVE Numbers: CVE-2013-0169
CVE-2013-1486
CVE-2013-1484
CVE-2013-1485

Multiple improper permission check issues were discovered in the JMX and
Libraries components in OpenJDK. An untrusted Java application or applet could
use these flaws to bypass Java sandbox restrictions. (CVE-2013-1486,
CVE-2013-1484)

An improper permission check issue was discovered in the Libraries component in
OpenJDK. An untrusted Java application or applet could use this flaw to bypass
certain Java sandbox restrictions. (CVE-2013-1485)

It was discovered that OpenJDK leaked timing information when decrypting
TLS/SSL protocol encrypted records when CBC-mode cipher suites were used. A
remote attacker could possibly use this flaw to retrieve plain text from the
encrypted packets by using a TLS/SSL server as a padding oracle.
(CVE-2013-0169)

This erratum also upgrades the OpenJDK package to IcedTea7 2.3.7.

All running instances of OpenJDK Java must be restarted for the update to take
effect.

SL5
x86_64
java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm
i386
java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.i386.rpm
java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el5_9.i386.rpm
java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.i386.rpm
java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.i386.rpm
java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.i386.rpm
java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.i386.rpm
SL6
x86_64
java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el6_3.x86_64.rpm
i386
java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el6_3.i686.rpm
java-1.7.0-openjdk-debuginfo-1.7.0.9-2.3.7.1.el6_3.i686.rpm
java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el6_3.i686.rpm
java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el6_3.i686.rpm
java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el6_3.i686.rpm
noarch
java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el6_3.noarch.rpm

– Scientific Linux Development Team