RHSA-2014:1036: java-1.5.0-ibm security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | July 17, 2014 | August 22, 2014 | July 04, 2017 |
Description
IBM J2SE version 5.0 includes the IBM Java Runtime Environment and the IBMJava Software Development Kit.This update fixes several vulnerabilities in the IBM Java RuntimeEnvironment and the IBM Java Software Development Kit. Detailedvulnerability descriptions are linked from the IBM Security alertspage, listed in the References section. (CVE-2014-4209, CVE-2014-4218,CVE-2014-4219, CVE-2014-4244, CVE-2014-4252, CVE-2014-4262, CVE-2014-4263)The CVE-2014-4262 issue was discovered by Florian Weimer of Red HatProduct Security.All users of java-1.5.0-ibm are advised to upgrade to these updatedpackages, containing the IBM J2SE 5.0 SR16-FP7 release. All runninginstances of IBM Java must be restarted for this update to take effect.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities
References
- BID-68583
- BID-68599
- BID-68620
- BID-68624
- BID-68636
- BID-68639
- BID-68642
- CVE-2014-3068
- CVE-2014-4209
- CVE-2014-4218
- CVE-2014-4219
- CVE-2014-4244
- CVE-2014-4252
- CVE-2014-4262
- CVE-2014-4263
- DEBIAN-DSA-2980
- DEBIAN-DSA-2987
- DISA_SEVERITY-Category I
- DISA_VMSKEY-V0058213
- IAVM-2015-B-0007
- REDHAT-RHSA-2014:1036
- REDHAT-RHSA-2015:0264
- XF-93756
- XF-94589
- XF-94595
- XF-94596
- XF-94599
- XF-94600
- XF-94605
- XF-94606
Solution
redhat-upgrade-java-1-5-0-ibmRelated Vulnerabilities
- Java CPU July 2014 Java SE, JRockit Security vulnerability (CVE-2014-4263)
- Gentoo Linux: CVE-2014-4263: Oracle JRE/JDK: Multiple vulnerabilities
- RHSA-2014:1041: java-1.7.0-ibm security update
- IBM WebSphere Application Server: CVE-2014-4244: IBM Multiple vulnerabilities in IBM Java SDK affect WebSphere Application Server July 2014 CPU
- IBM AIX: java_jul2014_advisory (CVE-2014-4263): Vulnerability in IBM Java SDK affects AIX
- IBM AIX: java_jul2014_advisory (CVE-2014-4218): Vulnerability in IBM Java SDK affects AIX
- Cent OS: CVE-2014-4244: CESA-2014:0907 (java-1.6.0-openjdk)
- RHSA-2014:0889: java-1.7.0-openjdk security update
- Java CPU July 2014 Java SE JMX vulnerability (CVE-2014-4209)
- USN-2319-1: OpenJDK 7 vulnerabilities
- SUSE: CVE-2014-4209: SUSE Linux Security Advisory
- ELSA-2014-0889 Critical: Oracle Linux java-1.7.0-openjdk security update
- Amazon Linux AMI: Security patch for java-1.7.0-openjdk (ALAS-2014-383) (multiple CVEs)
- RHSA-2014:1042: java-1.7.1-ibm security update
- IBM AIX: java_jul2014_advisory (CVE-2014-4262): Vulnerability in IBM Java SDK affects AIX
- RHSA-2014:0890: java-1.7.0-openjdk security update
- HP-UX: CVE-2014-4209: running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
- DSA-2987-1 openjdk-7 -- security update
- SUSE: CVE-2014-4263: SUSE Linux Security Advisory
- SUSE: CVE-2014-4219: SUSE Linux Security Advisory
- HP-UX: CVE-2014-4244: running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
- IBM WebSphere Application Server: CVE-2014-3068: IBM Multiple vulnerabilities in IBM Java SDK affect WebSphere Application Server July 2014 CPU
- Gentoo Linux: CVE-2014-4252: Oracle JRE/JDK: Multiple vulnerabilities
- ELSA-2014-0907 Important: Oracle Linux java-1.6.0-openjdk security and bug fix update
- IBM AIX: java_jul2014_advisory (CVE-2014-4219): Vulnerability in IBM Java SDK affects AIX
- Cent OS: CVE-2014-4209: CESA-2014:0907 (java-1.6.0-openjdk)
- Cent OS: CVE-2014-4263: CESA-2014:0907 (java-1.6.0-openjdk)
- HP-UX: CVE-2014-4218: running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
- HP-UX: CVE-2014-4252: running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
- HP-UX: CVE-2014-4262: running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
- Cent OS: CVE-2014-4262: CESA-2014:0907 (java-1.6.0-openjdk)
- SUSE: CVE-2014-4252: SUSE Linux Security Advisory
- Gentoo Linux: CVE-2014-4218: Oracle JRE/JDK: Multiple vulnerabilities
- HP-UX: CVE-2014-4263: running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
- HP-UX: CVE-2014-4219: running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
- IBM AIX: java_jul2014_advisory (CVE-2014-4209): Vulnerability in IBM Java SDK affects AIX
- Cent OS: CVE-2014-4252: CESA-2014:0907 (java-1.6.0-openjdk)
- Java CPU July 2014 Java SE Hotspot vulnerability (CVE-2014-4219)
- Java CPU July 2014 Java SE Libraries vulnerability (CVE-2014-4262)
- DSA-2980-1 openjdk-6 -- security update
- IBM AIX: java_jul2014_advisory (CVE-2014-4244): Vulnerability in IBM Java SDK affects AIX
- RHSA-2014:1033: java-1.6.0-ibm security update
- Cent OS: CVE-2014-4218: CESA-2014:0907 (java-1.6.0-openjdk)
- Java CPU July 2014 Java SE Security vulnerability (CVE-2014-4252)
- ELSA-2014-0890 Important: Oracle Linux java-1.7.0-openjdk security update
- IBM WebSphere Application Server: CVE-2014-4263: IBM Multiple vulnerabilities in IBM Java SDK affect WebSphere Application Server July 2014 CPU
- RHSA-2015:0264: Red Hat Satellite IBM Java Runtime security update
- Java CPU July 2014 Java SE Libraries vulnerability (CVE-2014-4218)
- USN-2312-1: OpenJDK 6 vulnerabilities
- Java CPU July 2014 Java SE, JRockit Security vulnerability (CVE-2014-4244)
- RHSA-2014:0902: java-1.7.0-oracle security update
- Gentoo Linux: CVE-2014-4262: Oracle JRE/JDK: Multiple vulnerabilities
- RHSA-2014:0907: java-1.6.0-openjdk security and bug fix update
- Gentoo Linux: CVE-2014-4244: Oracle JRE/JDK: Multiple vulnerabilities
- Gentoo Linux: CVE-2014-4209: Oracle JRE/JDK: Multiple vulnerabilities
- Amazon Linux AMI: Security patch for java-1.6.0-openjdk (ALAS-2014-387) (multiple CVEs)
- SUSE: CVE-2014-4218: SUSE Linux Security Advisory
- IBM AIX: java_jul2014_advisory (CVE-2014-4252): Vulnerability in IBM Java SDK affects AIX
- RHSA-2014:0908: java-1.6.0-sun security update
- Gentoo Linux: CVE-2014-4219: Oracle JRE/JDK: Multiple vulnerabilities
- Cent OS: CVE-2014-4219: CESA-2014:0907 (java-1.6.0-openjdk)
- SUSE: CVE-2014-4262: SUSE Linux Security Advisory
- SUSE: CVE-2014-4244: SUSE Linux Security Advisory