Bug 891701

Summary: VUL-0: java-1_7_0-ibm SR7-FP1
Product: [Novell Products] SUSE Security Incidents Reporter: Tomáš Chvátal <tchvatal>
Component: IncidentsAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P3 - Medium CC: abergmann, hannsj_uhl
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard: maint:released:sle11-sp3:58605 maint:running:60610:important maint:released:sle11-sp2:60722
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Tomáš Chvátal 2014-08-13 08:11:06 UTC
java-1_7_0-ibm update was released.

References:
http://www.ibm.com/developerworks/java/jdk/linux/download.html
Comment 2 Swamp Workflow Management 2014-08-13 15:27:24 UTC
An update workflow for this issue was started.
This issue was rated as moderate.
Please submit fixed packages until 2014-08-27.
When done, reassign the bug to security-team@suse.de.
https://swamp.suse.de/webswamp/wf/58581
Comment 3 SMASH SMASH 2014-08-13 15:30:12 UTC
Affected packages:

SLE-11-SP3: java-1_7_0-ibm
Comment 4 Swamp Workflow Management 2014-08-13 22:00:34 UTC
bugbot adjusting priority
Comment 7 Swamp Workflow Management 2014-08-19 22:04:30 UTC
SUSE-SU-2014:1037-1: An update that fixes 14 vulnerabilities is now available.

Category: security (moderate)
Bug References: 891701
CVE References: CVE-2014-4208,CVE-2014-4209,CVE-2014-4218,CVE-2014-4219,CVE-2014-4220,CVE-2014-4221,CVE-2014-4227,CVE-2014-4244,CVE-2014-4252,CVE-2014-4262,CVE-2014-4263,CVE-2014-4265,CVE-2014-4266,CVE-2014-4268
Sources used:
SUSE Linux Enterprise Software Development Kit 11 SP3 (src):    java-1_7_0-ibm-1.7.0_sr7.1-0.5.1
SUSE Linux Enterprise Server 11 SP3 for VMware (src):    java-1_7_0-ibm-1.7.0_sr7.1-0.5.1
SUSE Linux Enterprise Server 11 SP3 (src):    java-1_7_0-ibm-1.7.0_sr7.1-0.5.1
SUSE Linux Enterprise Java 11 SP3 (src):    java-1_7_0-ibm-1.7.0_sr7.1-0.5.1
Comment 8 Alexander Bergmann 2014-08-26 08:32:07 UTC
Released.
Comment 9 Swamp Workflow Management 2015-02-21 00:05:54 UTC
SUSE-SU-2015:0344-1: An update that solves two vulnerabilities and has four fixes is now available.

Category: security (important)
Bug References: 891701,901223,901239,904889,916265,916266
CVE References: CVE-2014-8891,CVE-2014-8892
Sources used:
SUSE Linux Enterprise Server 11 SP2 LTSS (src):    java-1_7_0-ibm-1.7.0_sr8.10-0.6.4, java-1_7_0-ibm-1.7.0_sr8.10-0.6.5