Gentoo Security Advisory GLSA 200806-11 (ibm-jdk-bin ibm-jre-bin)

  1. Network Vulnerabilities
  2. Gentoo Local Security Checks
  3. Gentoo Security Advisory GLSA 200806-11 (ibm-jdk-bin ibm-jre-bin)
Summary
The remote host is missing updates announced in advisory GLSA 200806-11.
Solution
All IBM JDK 1.5 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-java/ibm-jdk-bin-1.5.0.7' All IBM JDK 1.4 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-java/ibm-jdk-bin-1.4.2.11' All IBM JRE 1.5 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-java/ibm-jre-bin-1.5.0.7' All IBM JRE 1.4 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-java/ibm-jre-bin-1.4.2.11' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200806-11 http://bugs.gentoo.org/show_bug.cgi?id=186277 http://bugs.gentoo.org/show_bug.cgi?id=198644 http://bugs.gentoo.org/show_bug.cgi?id=216112 http://www.gentoo.org/security/en/glsa/glsa-200804-20.xml
Insight
Multiple vulnerabilities have been found in IBM Java Development Kit (JDK) and Java Runtime Environment (JRE), resulting in the execution of arbitrary code.
Severity
High Severity
Classification
Related Vulnerabilities