RHSA-2016:1504-01 -- Redhat java-1.7.0-openjdkID: oval:org.secpod.oval:def:501851 | Date: (C)2016-07-29 (M)2023-12-20 |
Class: PATCH | Family: unix |
The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix: * Multiple flaws were discovered in the Hotspot and Libraries components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. * Multiple denial of service flaws were found in the JAXP component in OpenJDK. A specially crafted XML file could cause a Java application using JAXP to consume an excessive amount of CPU and memory when parsed. * Multiple flaws were found in the CORBA and Hotsport components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions
Platform: |
Red Hat Enterprise Linux 7 |
Red Hat Enterprise Linux 6 |
Red Hat Enterprise Linux 5 |
Product: |
java-1.7.0-openjdk |