openjdk is vulnerable to sandbox restrictions bypass. An improper type safety check was discovered in the Hotspot component. An untrusted Java application or applet could use this flaw to bypass Java Sandbox restrictions.
lists.opensuse.org/opensuse-security-announce/2016-04/msg00003.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00004.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00005.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00007.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00008.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00013.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00014.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00035.html
rhn.redhat.com/errata/RHSA-2016-0511.html
rhn.redhat.com/errata/RHSA-2016-0512.html
rhn.redhat.com/errata/RHSA-2016-0513.html
rhn.redhat.com/errata/RHSA-2016-0514.html
rhn.redhat.com/errata/RHSA-2016-0515.html
rhn.redhat.com/errata/RHSA-2016-0516.html
www.debian.org/security/2016/dsa-3558
www.oracle.com/technetwork/topics/security/alert-cve-2016-0636-2949497.html
www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
www.securityfocus.com/bid/85376
www.securitytracker.com/id/1035401
www.ubuntu.com/usn/USN-2942-1
access.redhat.com/security/updates/classification/#critical
rhn.redhat.com/errata/RHSA-2016-0511.html
security.gentoo.org/glsa/201606-18
security.gentoo.org/glsa/201610-08
security.netapp.com/advisory/ntap-20160328-0001/