openjdk is vulnerable to privilege escalation. The vulnerability exists as the AtomicReferenceArray class implementation did not properly check if the array was of the expected Object[] type. A malicious Java application or applet could use this flaw to bypass Java sandbox restrictions.
icedtea.classpath.org/hg/release/icedtea6-1.10/file/icedtea6-1.10.6/NEWS
lists.opensuse.org/opensuse-updates/2012-10/msg00041.html
secunia.com/advisories/48073
secunia.com/advisories/48074
secunia.com/advisories/50897
security.gentoo.org/glsa/glsa-201406-32.xml
www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html
access.redhat.com/errata/RHSA-2012:0135
access.redhat.com/security/updates/classification/#critical