DebianDEBIAN:DLA-346-1:13970[SECURITY] [DLA 346-1] openjdk-6 security update
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.286 Low
EPSS
Percentile
96.9%
Package : openjdk-6
Version : 6b37-1.13.9-1~deb6u1
CVE ID : CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806
CVE-2015-4835 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844
CVE-2015-4860 CVE-2015-4872 CVE-2015-4881 CVE-2015-4882
CVE-2015-4883 CVE-2015-4893 CVE-2015-4903 CVE-2015-4911
Several vulnerabilities have been discovered in OpenJDK, an implementation of
the Oracle Java platform. These vulnerabilities relate to execution of
arbitrary code, breakouts of the Java sandbox, information disclosure and
denial of service.
For Debian 6 "Squeeze", these problems have been fixed in openjdk-6
version 6b37-1.13.9-1~deb6u1.
We recommend you to upgrade your openjdk-6 packages.
Learn more about the Debian Long Term Support (LTS) Project and how to
apply these updates at: https://wiki.debian.org/LTS/
Attachment:
signature.asc
Description: Digital signature
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 6 | amd64 | icedtea-6-jre-cacao | < 6b37-1.13.9-1~deb6u1 | icedtea-6-jre-cacao_6b37-1.13.9-1~deb6u1_amd64.deb |
| Debian | 7 | ia64 | openjdk-6-jdk | < 6b38-1.13.10-1~deb7u1 | openjdk-6-jdk_6b38-1.13.10-1~deb7u1_ia64.deb |
| Debian | 6 | i386 | openjdk-6-jre-headless | < 6b37-1.13.9-1~deb6u1 | openjdk-6-jre-headless_6b37-1.13.9-1~deb6u1_i386.deb |
| Debian | 8 | all | openjdk-7 | < 7u85-2.6.1-6~deb8u1 | openjdk-7_7u85-2.6.1-6~deb8u1_all.deb |
| Debian | 7 | armel | openjdk-7-jdk | < 7u85-2.6.1-6~deb7u1 | openjdk-7-jdk_7u85-2.6.1-6~deb7u1_armel.deb |
| Debian | 7 | armhf | openjdk-6-demo | < 6b38-1.13.10-1~deb7u1 | openjdk-6-demo_6b38-1.13.10-1~deb7u1_armhf.deb |
| Debian | 6 | all | openjdk-6-doc | < 6b37-1.13.9-1~deb6u1 | openjdk-6-doc_6b37-1.13.9-1~deb6u1_all.deb |
| Debian | 6 | amd64 | openjdk-6-dbg | < 6b37-1.13.9-1~deb6u1 | openjdk-6-dbg_6b37-1.13.9-1~deb6u1_amd64.deb |
| Debian | 7 | i386 | openjdk-6-jre-headless | < 6b38-1.13.10-1~deb7u1 | openjdk-6-jre-headless_6b38-1.13.10-1~deb7u1_i386.deb |
| Debian | 7 | armhf | icedtea-7-jre-jamvm | < 7u85-2.6.1-6~deb7u1 | icedtea-7-jre-jamvm_7u85-2.6.1-6~deb7u1_armhf.deb |
Related
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.286 Low
EPSS
Percentile
96.9%