Solution
Please Install the Updated Packages.
Insight
java-1_7_0-openjdk was updated to icedtea-2.3.4 fixing bugs and also severe security issues:
* Security fixes
- S8004933, CVE-2012-3174: Improve MethodHandle
interaction with libraries
- S8006017, CVE-2013-0422: Improve lookup resolutions - S8006125: Update MethodHandles library interactions
* Bug fixes
- S7197906: BlockOffsetArray::power_to_cards_back() needs to handle &
gt
32 bit shifts
- G422525: Fix building with PaX enabled kernels.
- use gpg-offline to check the validity of icedtea tarball
- use jamvm on %arm
- use icedtea package name instead of protected openjdk for jamvm builds
- fix armv5 build
- update to java access bridge 1.26.2
* bugfix release, mainly 64bit JNI and JVM support
- fix a segfault in AWT code - (bnc#792951)
* add openjdk-7-src-b147-awt-crasher.patch
- turn pulseaudio off on pre 11.4 distros
Affected
java-1_7_0-openjdk on openSUSE 12.2
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2012-3174, CVE-2013-0422 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities