[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DSA 3401-1] openjdk-7 security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3401-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
November 22, 2015                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-7
CVE ID         : CVE-2015-4871

It was discovered that rebinding a receiver of a direct method handle
may allow a protected method to be accessed.

For the oldstable distribution (wheezy), this problem has been fixed
in version 7u91-2.6.3-1~deb7u1.

For the stable distribution (jessie), this problem has been fixed in
version 7u91-2.6.3-1~deb8u1.

For the unstable distribution (sid), this problem has been fixed in
version 7u91-2.6.3-1.

We recommend that you upgrade your openjdk-7 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=nJKD
-----END PGP SIGNATURE-----


Reply to: