java is vulnerable to information disclosure attacks. The vulnerability exists through sandboxed Java Web Start applications and sandboxed Java applets.Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591.
h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04583581
lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html
lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html
lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html
marc.info/?l=bugtraq&m=142496355704097&w=2
marc.info/?l=bugtraq&m=142607790919348&w=2
rhn.redhat.com/errata/RHSA-2015-0068.html
rhn.redhat.com/errata/RHSA-2015-0079.html
rhn.redhat.com/errata/RHSA-2015-0080.html
rhn.redhat.com/errata/RHSA-2015-0085.html
rhn.redhat.com/errata/RHSA-2015-0086.html
rhn.redhat.com/errata/RHSA-2015-0136.html
rhn.redhat.com/errata/RHSA-2015-0264.html
www.debian.org/security/2015/dsa-3144
www.debian.org/security/2015/dsa-3147
www.debian.org/security/2015/dsa-3323
www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
www.securityfocus.com/bid/72173
www.securitytracker.com/id/1031580
www.ubuntu.com/usn/USN-2486-1
www.ubuntu.com/usn/USN-2487-1
www.vmware.com/security/advisories/VMSA-2015-0003.html
access.redhat.com/security/updates/classification/#critical
rhn.redhat.com/errata/RHSA-2015-0135.html
security.gentoo.org/glsa/201507-14
security.gentoo.org/glsa/201603-14
www-304.ibm.com/support/docview.wss?uid=swg21695474
www.ibm.com/developerworks/java/jdk/alerts/