Security update for java-1_8_0-openjdk SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:1905-1 Final 1 1 2015-10-22T16:37:23Z current 2015-10-22T16:37:23Z 2015-10-22T16:37:23Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for java-1_8_0-openjdk java-1_8_0-openjdk was updated to fix 24 security issues. These security issues were fixed: - CVE-2015-4734: A remote user can exploit a flaw in the Embedded JGSS component to partially access data - CVE-2015-4803: A remote user can exploit a flaw in the JRockit JAXP component to cause partial denial of service conditions - CVE-2015-4805: A remote user can exploit a flaw in the Embedded Serialization component to gain elevated privileges - CVE-2015-4806: A remote user can exploit a flaw in the Java SE Embedded Libraries component to partially access and partially modify data - CVE-2015-4835: A remote user can exploit a flaw in the Embedded CORBA component to gain elevated privileges - CVE-2015-4842: A remote user can exploit a flaw in the Embedded JAXP component to partially access data - CVE-2015-4843: A remote user can exploit a flaw in the Java SE Embedded Libraries component to gain elevated privileges - CVE-2015-4844: A remote user can exploit a flaw in the Embedded 2D component to gain elevated privileges - CVE-2015-4860: A remote user can exploit a flaw in the Embedded RMI component to gain elevated privileges - CVE-2015-4872: A remote user can exploit a flaw in the JRockit Security component to partially modify data []. - CVE-2015-4881: A remote user can exploit a flaw in the Embedded CORBA component to gain elevated privileges - CVE-2015-4882: A remote user can exploit a flaw in the Embedded CORBA component to cause partial denial of service conditions - CVE-2015-4883: A remote user can exploit a flaw in the Embedded RMI component to gain elevated privileges - CVE-2015-4893: A remote user can exploit a flaw in the JRockit JAXP component to cause partial denial of service conditions - CVE-2015-4902: A remote user can exploit a flaw in the Java SE Deployment component to partially modify data - CVE-2015-4903: A remote user can exploit a flaw in the Embedded RMI component to partially access data - CVE-2015-4911: A remote user can exploit a flaw in the JRockit JAXP component to cause partial denial of service conditions - CVE-2015-4810: A local user can exploit a flaw in the Java SE Deployment component to gain elevated privileges - CVE-2015-4840: A remote user can exploit a flaw in the Embedded 2D component to partially access data - CVE-2015-4868: A remote user can exploit a flaw in the Java SE Embedded Libraries component to gain elevated privileges - CVE-2015-4901: A remote user can exploit a flaw in the JavaFX component to gain elevated privileges - CVE-2015-4906: A remote user can exploit a flaw in the JavaFX component to partially access data - CVE-2015-4908: A remote user can exploit a flaw in the JavaFX component to partially access data - CVE-2015-4916: A remote user can exploit a flaw in the JavaFX component to partially access data The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html E-Mail link for openSUSE-SU-2015:1905-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE 13.2 java-1_8_0-openjdk-1.8.0.65-18.1 java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 java-1_8_0-openjdk-demo-1.8.0.65-18.1 java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 java-1_8_0-openjdk-devel-1.8.0.65-18.1 java-1_8_0-openjdk-headless-1.8.0.65-18.1 java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 java-1_8_0-openjdk-src-1.8.0.65-18.1 java-1_8_0-openjdk-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-demo-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-devel-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-headless-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 as a component of openSUSE 13.2 java-1_8_0-openjdk-src-1.8.0.65-18.1 as a component of openSUSE 13.2 Unspecified vulnerability in Oracle Java SE 6u101, 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to JGSS. CVE-2015-4734 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4734.html CVE-2015-4734 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911. CVE-2015-4803 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4803.html CVE-2015-4803 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization. CVE-2015-4805 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4805.html CVE-2015-4805 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. CVE-2015-4806 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4806.html CVE-2015-4806 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 7u85 and 8u60 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. CVE-2015-4810 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4810.html CVE-2015-4810 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2015-4881. CVE-2015-4835 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4835.html CVE-2015-4835 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 7u85 and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via unknown vectors related to 2D. CVE-2015-4840 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4840.html CVE-2015-4840 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to JAXP. CVE-2015-4842 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4842.html CVE-2015-4842 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. CVE-2015-4843 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4843.html CVE-2015-4843 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. CVE-2015-4844 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4844.html CVE-2015-4844 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883. CVE-2015-4860 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4860.html CVE-2015-4860 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 8u60 and Java SE Embedded 8u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. CVE-2015-4868 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4868.html CVE-2015-4868 https://bugzilla.suse.com/951376 SUSE Bug 951376 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect integrity via unknown vectors related to Security. CVE-2015-4872 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4872.html CVE-2015-4872 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2015-4835. CVE-2015-4881 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4881.html CVE-2015-4881 https://bugzilla.suse.com/951376 SUSE Bug 951376 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect availability via vectors related to CORBA. CVE-2015-4882 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4882.html CVE-2015-4882 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4860. CVE-2015-4883 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4883.html CVE-2015-4883 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4911. CVE-2015-4893 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4893.html CVE-2015-4893 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 8u60 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX. CVE-2015-4901 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4901.html CVE-2015-4901 https://bugzilla.suse.com/951376 SUSE Bug 951376 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60 allows remote attackers to affect integrity via unknown vectors related to Deployment. CVE-2015-4902 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4902.html CVE-2015-4902 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality via vectors related to RMI. CVE-2015-4903 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4903.html CVE-2015-4903 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote attackers to affect confidentiality via unknown vectors related to JavaFX, a different vulnerability than CVE-2015-4908 and CVE-2015-4916. CVE-2015-4906 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4906.html CVE-2015-4906 https://bugzilla.suse.com/951376 SUSE Bug 951376 Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2015-4906 and CVE-2015-4916. CVE-2015-4908 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4908.html CVE-2015-4908 https://bugzilla.suse.com/951376 SUSE Bug 951376 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4893. CVE-2015-4911 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4911.html CVE-2015-4911 https://bugzilla.suse.com/951376 SUSE Bug 951376 https://bugzilla.suse.com/955131 SUSE Bug 955131 Unspecified vulnerability in Oracle Java SE 8u60 and JavaFX 2.2.85 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2015-4906 and CVE-2015-4908. CVE-2015-4916 openSUSE 13.2:java-1_8_0-openjdk-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-accessibility-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-debugsource-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-demo-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-devel-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-headless-debuginfo-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-javadoc-1.8.0.65-18.1 openSUSE 13.2:java-1_8_0-openjdk-src-1.8.0.65-18.1 important Please Install the update. http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html https://www.suse.com/security/cve/CVE-2015-4916.html CVE-2015-4916 https://bugzilla.suse.com/951376 SUSE Bug 951376