Security Advisory Critical: java-1.7.0-openjdk security update

Advisory: RHSA-2017:0269-1
Type: Security Advisory
Severity: Critical
Issued on: 2017-02-13
Last updated on: 2017-02-13
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux Desktop (v. 7)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux HPC Node (v. 7)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server (v. 7)
Red Hat Enterprise Linux Server TUS (v. 7.3)
Red Hat Enterprise Linux Workstation (v. 6)
Red Hat Enterprise Linux Workstation (v. 7)
CVEs (cve.mitre.org): CVE-2016-5546
CVE-2016-5547
CVE-2016-5548
CVE-2016-5552
CVE-2017-3231
CVE-2017-3241
CVE-2017-3252
CVE-2017-3253
CVE-2017-3261
CVE-2017-3272
CVE-2017-3289

Details

An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux
5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment
and the OpenJDK 7 Java Software Development Kit.

Security Fix(es):

* It was discovered that the RMI registry and DCG implementations in the RMI
component of OpenJDK performed deserialization of untrusted inputs. A remote
attacker could possibly use this flaw to execute arbitrary code with the
privileges of RMI registry or a Java RMI application. (CVE-2017-3241)

This issue was addressed by introducing whitelists of classes that can be
deserialized by RMI registry or DCG. These whitelists can be customized using
the newly introduced sun.rmi.registry.registryFilter and
sun.rmi.transport.dgcFilter security properties.

* Multiple flaws were discovered in the Libraries and Hotspot components in
OpenJDK. An untrusted Java application or applet could use these flaws to
completely bypass Java sandbox restrictions. (CVE-2017-3272, CVE-2017-3289)

* A covert timing channel flaw was found in the DSA implementation in the
Libraries component of OpenJDK. A remote attacker could possibly use this flaw
to extract certain information about the used key via a timing side channel.
(CVE-2016-5548)

* It was discovered that the Libraries component of OpenJDK accepted ECSDA
signatures using non-canonical DER encoding. This could cause a Java application
to accept signature in an incorrect format not accepted by other cryptographic
tools. (CVE-2016-5546)

* It was discovered that the 2D component of OpenJDK performed parsing of iTXt
and zTXt PNG image chunks even when configured to ignore metadata. An attacker
able to make a Java application parse a specially crafted PNG image could cause
the application to consume an excessive amount of memory. (CVE-2017-3253)

* It was discovered that the Libraries component of OpenJDK did not validate the
length of the object identifier read from the DER input before allocating memory
to store the OID. An attacker able to make a Java application decode a specially
crafted DER input could cause the application to consume an excessive amount of
memory. (CVE-2016-5547)

* It was discovered that the JAAS component of OpenJDK did not use the correct
way to extract user DN from the result of the user search LDAP query. A
specially crafted user LDAP entry could cause the application to use an
incorrect DN. (CVE-2017-3252)

* It was discovered that the Networking component of OpenJDK failed to properly
parse user info from the URL. A remote attacker could cause a Java application
to incorrectly parse an attacker supplied URL and interpret it differently from
other applications processing the same URL. (CVE-2016-5552)

* Multiple flaws were found in the Networking components in OpenJDK. An
untrusted Java application or applet could use these flaws to bypass certain
Java sandbox restrictions. (CVE-2017-3261, CVE-2017-3231)

* A flaw was found in the way the DES/3DES cipher was used as part of the
TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover
some plaintext data by capturing large amounts of encrypted traffic between
TLS/SSL server and client if the communication used a DES/3DES based
ciphersuite. (CVE-2016-2183)

This update mitigates the CVE-2016-2183 issue by adding 3DES cipher suites to
the list of legacy algorithms (defined using the jdk.tls.legacyAlgorithms
security property) so they are only used if connecting TLS/SSL client and server
do not share any other non-legacy cipher suite.


Solution

For details on how to apply this update, which includes the changes described in
this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of OpenJDK Java must be restarted for this update to take
effect.

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.src.rpm     MD5: 8453d06032cdfd1b4da3215621fb39b0
SHA-256: 178b63a103fb63232c81a396f167efaa0366f9a2e3de02bc0ddf21978908d595
 
IA-32:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 25fccdb9f728437e357f1c379038b39d
SHA-256: 269ca66f5143656a8a8a33d9962b89a80c3bc3a11f4bb9e0b6eff2c9dee466f1
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 9d026d831605683c715ce20396872dd3
SHA-256: f7629cce8e6438704d6af86ee36431cb394de7e960672220b106a7c88bdf5b85
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 629d8873d507f892bccd24dfe91dc0a5
SHA-256: 5a4d342aa9a4cddf1ea0cc3a20563af191b8bf14c2e9f4750e43dbcffacf91bc
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: a879d941d8ce234dce37456e24c531f7
SHA-256: 0b5ac04e66f121b2549f0c7583f33fe183731c43786d1ab4006fb82e4a07c81e
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 4c76ad36cbd63bfe43d0f2ef008a0c12
SHA-256: 6d14127f3ca52747c81ee932db576d023bac1b257a4921e42680e5b88c19163d
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 2ae7c3d32b05245dfe04b33130e27021
SHA-256: 5c6e6ecd4b9087fa512e8cd83ed9fdc80568552fca53d20fab2cb56f8b7056ee
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: f4c4fb88d856cd1c94fa0b3353f92f1b
SHA-256: 7b06adf3326d11718437fd414d5beab15d816b8bb1f69c4761e28a141dc427a0
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: ef7adaefafe89cad9299eb22dd808e43
SHA-256: 55d9ffce29ef060f0441acbbd211acba4300ba507d4439a9107ca412caf23630
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: 2f6c9f9363edbc59586beebb6943e89d
SHA-256: 400cbea28e2c519b9dae0a2585da76f48863ac15b8f1bc0501414dcef7b3b696
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: da0ca13f360eb5c876f7befffc8acb12
SHA-256: 50b9fac26bfca126bb2a13c6624077ad9398e419ddf798a96810f8611eb20068
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: 447841ebeaadd700c19fdc480e89babd
SHA-256: 83ecc77b76ba3a9c58cebad45e8612b432e2ec372b18c5f62cb47e9f78b228c5
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: 476e9e74d0009bc9e39257a40b6317db
SHA-256: 782768a85258ae04f29e79dbf802740b63ea6fecde3a8a1fd47a06534791b4ca
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.src.rpm     MD5: 8453d06032cdfd1b4da3215621fb39b0
SHA-256: 178b63a103fb63232c81a396f167efaa0366f9a2e3de02bc0ddf21978908d595
 
IA-32:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 25fccdb9f728437e357f1c379038b39d
SHA-256: 269ca66f5143656a8a8a33d9962b89a80c3bc3a11f4bb9e0b6eff2c9dee466f1
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 9d026d831605683c715ce20396872dd3
SHA-256: f7629cce8e6438704d6af86ee36431cb394de7e960672220b106a7c88bdf5b85
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 629d8873d507f892bccd24dfe91dc0a5
SHA-256: 5a4d342aa9a4cddf1ea0cc3a20563af191b8bf14c2e9f4750e43dbcffacf91bc
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: a879d941d8ce234dce37456e24c531f7
SHA-256: 0b5ac04e66f121b2549f0c7583f33fe183731c43786d1ab4006fb82e4a07c81e
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 4c76ad36cbd63bfe43d0f2ef008a0c12
SHA-256: 6d14127f3ca52747c81ee932db576d023bac1b257a4921e42680e5b88c19163d
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el5_11.i386.rpm     MD5: 2ae7c3d32b05245dfe04b33130e27021
SHA-256: 5c6e6ecd4b9087fa512e8cd83ed9fdc80568552fca53d20fab2cb56f8b7056ee
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: f4c4fb88d856cd1c94fa0b3353f92f1b
SHA-256: 7b06adf3326d11718437fd414d5beab15d816b8bb1f69c4761e28a141dc427a0
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: ef7adaefafe89cad9299eb22dd808e43
SHA-256: 55d9ffce29ef060f0441acbbd211acba4300ba507d4439a9107ca412caf23630
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: 2f6c9f9363edbc59586beebb6943e89d
SHA-256: 400cbea28e2c519b9dae0a2585da76f48863ac15b8f1bc0501414dcef7b3b696
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: da0ca13f360eb5c876f7befffc8acb12
SHA-256: 50b9fac26bfca126bb2a13c6624077ad9398e419ddf798a96810f8611eb20068
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: 447841ebeaadd700c19fdc480e89babd
SHA-256: 83ecc77b76ba3a9c58cebad45e8612b432e2ec372b18c5f62cb47e9f78b228c5
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm     MD5: 476e9e74d0009bc9e39257a40b6317db
SHA-256: 782768a85258ae04f29e79dbf802740b63ea6fecde3a8a1fd47a06534791b4ca
 
Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: 40514fb9d749018f63d16226c46b756b
SHA-256: 5b1991e7f087808c5893e2beee04585e15b972071a8680855be6a9bcbeff7cf4
 
IA-32:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 6b3d977ddc9358329813041a4e21eddf
SHA-256: 76c6b7170de8a9a722616c1dc117c9fe6159b5f76cc909cd668e87dd4f6da25f
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 6db011f20c02ce2cd1361f3da93eb7e6
SHA-256: a2bf9aebc7fcb918faa5151cb56b8d896259bfaa2a8bd1db35e8095e89e8a0e4
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 0298834884edd89bebe6452eebe4610d
SHA-256: 976361b75120a6039d9eaee6e9000fe25797003b98e58cda207a40b1c707afd5
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 58bb2bd77e6d2a1f57947c56bd32f73d
SHA-256: 067a2ccbae6f97301f0216b141f1f72032eaa8b5b459cfa441289e2b9930edf2
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el6_8.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: f8764930b81c84f1cf76fe1104e56d22
SHA-256: 698b332343685fd9e8cb76442d72488561df05b4b5a60ce2c29fec72d33f20a9
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 739dc3f386743060b258371b49d020f9
SHA-256: d448eb284bd3f3276553f571172e5af9d252241102e2185a7bf7633bf7f3d909
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 942265ec4627c62e5e4cf7790e4a3ac7
SHA-256: 737f3fb1c1ec5bbe4a14f77dcb938be2d6fe38796637d01de714f6b1411cb4da
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 2eabc129819aac360e937fed57597ba0
SHA-256: 311813b96567b7951b76c77bcde38f87a08631feb69b9319cf4f2fe9affe5543
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: c82fef491e44c21bb251281d6f46d2fb
SHA-256: 3ea576cfc3c385aeced800673a0fb3bf01b82cf03b5e92dfbeda6aa76b9ea106
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 57faad21dee148dd8ceec361d0217b07
SHA-256: e59d1a67070ac4a937c9044c5814bbccc507594326e349a74b573c6ac56d5da7
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el6_8.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: f8764930b81c84f1cf76fe1104e56d22
SHA-256: 698b332343685fd9e8cb76442d72488561df05b4b5a60ce2c29fec72d33f20a9
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: f5e95125d971a33d138d34267a670a3a
SHA-256: bcb3bfe14f1dc46bc096bded16399698bcc3a600541cda3bb51bb3af0bd8e4c9
 
Red Hat Enterprise Linux Desktop (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed3794005814b72f696c7ed0a4e924a4
SHA-256: 8c1c69a172d17c90cff9fb772099f5bfb1bd98f51b57ea8a9fba176230d46bea
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 5ff395f8b27a1bd4b0d0118abd6e07c9
SHA-256: b766262800689ff7dc48fdb86e9cd190eb656d0da1f0276e371e31e20b0b2302
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 570a9e02f5dd6d41da4e1327d1b3f7d3
SHA-256: be3a5027b5dc50d7c750e0ebadf74f2495becc5a1f38c721b7c29b953ce3b13d
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 9f4f786e1be83aaf915804f32cd6a879
SHA-256: f2b2e58867e95bbe39b87ee57d3934f266986cc39ee7ddf13e4c6fa4331b38ce
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed5ac07b8b25f732671848384d3f2575
SHA-256: 9eadf1b05d89721c5686efef15131756f1d5dc2b6f9f8dfd3e9609c844c22904
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: b5c16d3084d33be91097ae9ea4adda09
SHA-256: 8630e7e1b1318cdafdc3c80373d1c32d47d7a1d2890b66f3cd0dce37fef38d79
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 185800bc1f26babb4e8a7e0f9efd0734
SHA-256: 4b1d1c3707b956f6ebf0051a978acd3f83eddd823885e1c9e962657972054f41
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 436cfbb73ecae819ff7c73a47bd76740
SHA-256: 68c0d48fc3e8e6ed96248ee9c3dc262db1fc99c1428e394adb050612aea24c54
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: 40514fb9d749018f63d16226c46b756b
SHA-256: 5b1991e7f087808c5893e2beee04585e15b972071a8680855be6a9bcbeff7cf4
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 942265ec4627c62e5e4cf7790e4a3ac7
SHA-256: 737f3fb1c1ec5bbe4a14f77dcb938be2d6fe38796637d01de714f6b1411cb4da
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 2eabc129819aac360e937fed57597ba0
SHA-256: 311813b96567b7951b76c77bcde38f87a08631feb69b9319cf4f2fe9affe5543
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: c82fef491e44c21bb251281d6f46d2fb
SHA-256: 3ea576cfc3c385aeced800673a0fb3bf01b82cf03b5e92dfbeda6aa76b9ea106
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 57faad21dee148dd8ceec361d0217b07
SHA-256: e59d1a67070ac4a937c9044c5814bbccc507594326e349a74b573c6ac56d5da7
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el6_8.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: f8764930b81c84f1cf76fe1104e56d22
SHA-256: 698b332343685fd9e8cb76442d72488561df05b4b5a60ce2c29fec72d33f20a9
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: f5e95125d971a33d138d34267a670a3a
SHA-256: bcb3bfe14f1dc46bc096bded16399698bcc3a600541cda3bb51bb3af0bd8e4c9
 
Red Hat Enterprise Linux HPC Node (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed3794005814b72f696c7ed0a4e924a4
SHA-256: 8c1c69a172d17c90cff9fb772099f5bfb1bd98f51b57ea8a9fba176230d46bea
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 5ff395f8b27a1bd4b0d0118abd6e07c9
SHA-256: b766262800689ff7dc48fdb86e9cd190eb656d0da1f0276e371e31e20b0b2302
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 570a9e02f5dd6d41da4e1327d1b3f7d3
SHA-256: be3a5027b5dc50d7c750e0ebadf74f2495becc5a1f38c721b7c29b953ce3b13d
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 9f4f786e1be83aaf915804f32cd6a879
SHA-256: f2b2e58867e95bbe39b87ee57d3934f266986cc39ee7ddf13e4c6fa4331b38ce
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed5ac07b8b25f732671848384d3f2575
SHA-256: 9eadf1b05d89721c5686efef15131756f1d5dc2b6f9f8dfd3e9609c844c22904
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: b5c16d3084d33be91097ae9ea4adda09
SHA-256: 8630e7e1b1318cdafdc3c80373d1c32d47d7a1d2890b66f3cd0dce37fef38d79
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 185800bc1f26babb4e8a7e0f9efd0734
SHA-256: 4b1d1c3707b956f6ebf0051a978acd3f83eddd823885e1c9e962657972054f41
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 436cfbb73ecae819ff7c73a47bd76740
SHA-256: 68c0d48fc3e8e6ed96248ee9c3dc262db1fc99c1428e394adb050612aea24c54
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: 40514fb9d749018f63d16226c46b756b
SHA-256: 5b1991e7f087808c5893e2beee04585e15b972071a8680855be6a9bcbeff7cf4
 
IA-32:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 6b3d977ddc9358329813041a4e21eddf
SHA-256: 76c6b7170de8a9a722616c1dc117c9fe6159b5f76cc909cd668e87dd4f6da25f
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 6db011f20c02ce2cd1361f3da93eb7e6
SHA-256: a2bf9aebc7fcb918faa5151cb56b8d896259bfaa2a8bd1db35e8095e89e8a0e4
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 0298834884edd89bebe6452eebe4610d
SHA-256: 976361b75120a6039d9eaee6e9000fe25797003b98e58cda207a40b1c707afd5
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 58bb2bd77e6d2a1f57947c56bd32f73d
SHA-256: 067a2ccbae6f97301f0216b141f1f72032eaa8b5b459cfa441289e2b9930edf2
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el6_8.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: f8764930b81c84f1cf76fe1104e56d22
SHA-256: 698b332343685fd9e8cb76442d72488561df05b4b5a60ce2c29fec72d33f20a9
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 739dc3f386743060b258371b49d020f9
SHA-256: d448eb284bd3f3276553f571172e5af9d252241102e2185a7bf7633bf7f3d909
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 942265ec4627c62e5e4cf7790e4a3ac7
SHA-256: 737f3fb1c1ec5bbe4a14f77dcb938be2d6fe38796637d01de714f6b1411cb4da
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 2eabc129819aac360e937fed57597ba0
SHA-256: 311813b96567b7951b76c77bcde38f87a08631feb69b9319cf4f2fe9affe5543
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: c82fef491e44c21bb251281d6f46d2fb
SHA-256: 3ea576cfc3c385aeced800673a0fb3bf01b82cf03b5e92dfbeda6aa76b9ea106
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 57faad21dee148dd8ceec361d0217b07
SHA-256: e59d1a67070ac4a937c9044c5814bbccc507594326e349a74b573c6ac56d5da7
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el6_8.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: f8764930b81c84f1cf76fe1104e56d22
SHA-256: 698b332343685fd9e8cb76442d72488561df05b4b5a60ce2c29fec72d33f20a9
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: f5e95125d971a33d138d34267a670a3a
SHA-256: bcb3bfe14f1dc46bc096bded16399698bcc3a600541cda3bb51bb3af0bd8e4c9
 
Red Hat Enterprise Linux Server (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed3794005814b72f696c7ed0a4e924a4
SHA-256: 8c1c69a172d17c90cff9fb772099f5bfb1bd98f51b57ea8a9fba176230d46bea
 
PPC:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.ppc64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 69278cac4085e04128ee97be53238746
SHA-256: 83234b5c71ba0d24878423a1fdefbc05ac85bf9eb1b5fdb19b3af000c21d9892
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.ppc64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 2ad53f7883ef1d4a96d5a63ca8a68ecd
SHA-256: a6303255fdd98a53167b0079edeff050f18bc6d5a3275d47834743381193093d
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.ppc64.rpm
File outdated by:  RHSA-2017:1204
    MD5: dde013659fc41354585175d6411a0b82
SHA-256: 9da5752901a8918668f2f79761cdc775c3b76ee52a417c49f755a163596ba444
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.ppc64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 0c57233a2ca9e9d023e98ec849d90429
SHA-256: 6dc85eabad9ce5c49d2f8402e20cb442c302fee7ef32be709cde908f7d3262db
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.ppc64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 27713d109b37061960104e76d89def1f
SHA-256: 0153093c1f8cfa64d5a73244324e8af1be120d3dc5596b8b88aff4104c1b6d0c
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.ppc64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 190448c78d6247c2ad66abdd3e2ab314
SHA-256: cffc0766a8dbe0ea04f05608cd94efa22bdd3d50806f7021ca94454eb0802092
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.ppc64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 268bcfe0a39d375750dcc6b7576261a8
SHA-256: 75042911995200b48e342868508aa7a769c07cf2df6eb92b595818d13c930761
 
PPC64LE:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.ppc64le.rpm
File outdated by:  RHSA-2017:1204
    MD5: d33c67bb9a73d339e8d9e6868bb3cba4
SHA-256: 3304172b96db1e2f12f7d19eddc6b071ed621ff6f686bd34da830859d4f463fc
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.ppc64le.rpm
File outdated by:  RHSA-2017:1204
    MD5: 10cf8f7a15d2442694e404dc264c7dae
SHA-256: 1e482ad6814e05d1fcf630f6c45a4acd1870f2ac25aff7215eb8c0298de2b4d0
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.ppc64le.rpm
File outdated by:  RHSA-2017:1204
    MD5: a88f36790f741432d362c91ceb9dfcd4
SHA-256: 29556f7a4713e45e59c5cee8db88994e3543ea6071fd94c5bf89d2c2b5c4120f
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.ppc64le.rpm
File outdated by:  RHSA-2017:1204
    MD5: fe4fff13670a9807b960744ba83d76c7
SHA-256: b4bf5ad8734f3a525b11cc419f952a8274b88044cb825a7cc8352e035fb629ec
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.ppc64le.rpm
File outdated by:  RHSA-2017:1204
    MD5: 0ded128c93eb8f1f3bc9b7792c7b08d5
SHA-256: f5016778de02fbde682edf81cf5180bf3c19d875387ebb4b7b8de4daf494adc3
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.ppc64le.rpm
File outdated by:  RHSA-2017:1204
    MD5: 35882ef397481efb296312c092c23ff4
SHA-256: 0084291d5f9fbd231982d2669d45d3600a09dcfc38e562afc2f67bdb3488bc1c
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.ppc64le.rpm
File outdated by:  RHSA-2017:1204
    MD5: 57ec85d6c2a3106305fb5187ad62a67c
SHA-256: cb522628ed4860ecf1c0561a4aeefdcd148f5af44f50da6b9b848acabd5fe688
 
s390x:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.s390x.rpm
File outdated by:  RHSA-2017:1204
    MD5: c57f68c5388c88d279e83d28d253236a
SHA-256: 6be69998f2842ecec25afa9aa972e9e98170f1fdbf2ab014b2331ddee0886a4e
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.s390x.rpm
File outdated by:  RHSA-2017:1204
    MD5: b22bc7ac6bb40952c72993ddf09a3cff
SHA-256: 45af0abc056d5a72da0ca95c7e5d1d74c0843b67b9638543c904138c5a340375
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.s390x.rpm
File outdated by:  RHSA-2017:1204
    MD5: 562f80b82a090b9d1794e7fe8d8a0605
SHA-256: ab14410efecd0d0f952ecdeef337ea30d2429dbf56d8abf7fb779fa08dc91104
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.s390x.rpm
File outdated by:  RHSA-2017:1204
    MD5: 9bd7b87250aa732cb83eb4d169d87c28
SHA-256: 5bf1a4290b5092d444d02ae2f1a3de1158fccf8a4b4aa9c97d7120285ece5efa
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.s390x.rpm
File outdated by:  RHSA-2017:1204
    MD5: 30aed2b88a1fd2706f7f11b75d4d71ea
SHA-256: 90e0fa3fc134509b2f22b95bb8da3659332dda501f73ba08a2253d8ed9d15c84
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.s390x.rpm
File outdated by:  RHSA-2017:1204
    MD5: ec616e91732fb0a15edb018a7b6b46fc
SHA-256: 0b5e1ddb30b272acd669324fd2b4c40894dc6fd3e8d66cacc0a0f95bd764a6c9
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.s390x.rpm
File outdated by:  RHSA-2017:1204
    MD5: ba6df3fbbf907e57d3c1116443d4698d
SHA-256: 1c53ad484e07d07e9db63fc60b8e7382487c18c644891fdf55139a6670a29790
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 5ff395f8b27a1bd4b0d0118abd6e07c9
SHA-256: b766262800689ff7dc48fdb86e9cd190eb656d0da1f0276e371e31e20b0b2302
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 570a9e02f5dd6d41da4e1327d1b3f7d3
SHA-256: be3a5027b5dc50d7c750e0ebadf74f2495becc5a1f38c721b7c29b953ce3b13d
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 9f4f786e1be83aaf915804f32cd6a879
SHA-256: f2b2e58867e95bbe39b87ee57d3934f266986cc39ee7ddf13e4c6fa4331b38ce
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed5ac07b8b25f732671848384d3f2575
SHA-256: 9eadf1b05d89721c5686efef15131756f1d5dc2b6f9f8dfd3e9609c844c22904
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: b5c16d3084d33be91097ae9ea4adda09
SHA-256: 8630e7e1b1318cdafdc3c80373d1c32d47d7a1d2890b66f3cd0dce37fef38d79
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 185800bc1f26babb4e8a7e0f9efd0734
SHA-256: 4b1d1c3707b956f6ebf0051a978acd3f83eddd823885e1c9e962657972054f41
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 436cfbb73ecae819ff7c73a47bd76740
SHA-256: 68c0d48fc3e8e6ed96248ee9c3dc262db1fc99c1428e394adb050612aea24c54
 
Red Hat Enterprise Linux Server TUS (v. 7.3)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed3794005814b72f696c7ed0a4e924a4
SHA-256: 8c1c69a172d17c90cff9fb772099f5bfb1bd98f51b57ea8a9fba176230d46bea
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 5ff395f8b27a1bd4b0d0118abd6e07c9
SHA-256: b766262800689ff7dc48fdb86e9cd190eb656d0da1f0276e371e31e20b0b2302
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 570a9e02f5dd6d41da4e1327d1b3f7d3
SHA-256: be3a5027b5dc50d7c750e0ebadf74f2495becc5a1f38c721b7c29b953ce3b13d
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 9f4f786e1be83aaf915804f32cd6a879
SHA-256: f2b2e58867e95bbe39b87ee57d3934f266986cc39ee7ddf13e4c6fa4331b38ce
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed5ac07b8b25f732671848384d3f2575
SHA-256: 9eadf1b05d89721c5686efef15131756f1d5dc2b6f9f8dfd3e9609c844c22904
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: b5c16d3084d33be91097ae9ea4adda09
SHA-256: 8630e7e1b1318cdafdc3c80373d1c32d47d7a1d2890b66f3cd0dce37fef38d79
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 185800bc1f26babb4e8a7e0f9efd0734
SHA-256: 4b1d1c3707b956f6ebf0051a978acd3f83eddd823885e1c9e962657972054f41
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 436cfbb73ecae819ff7c73a47bd76740
SHA-256: 68c0d48fc3e8e6ed96248ee9c3dc262db1fc99c1428e394adb050612aea24c54
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: 40514fb9d749018f63d16226c46b756b
SHA-256: 5b1991e7f087808c5893e2beee04585e15b972071a8680855be6a9bcbeff7cf4
 
IA-32:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 6b3d977ddc9358329813041a4e21eddf
SHA-256: 76c6b7170de8a9a722616c1dc117c9fe6159b5f76cc909cd668e87dd4f6da25f
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 6db011f20c02ce2cd1361f3da93eb7e6
SHA-256: a2bf9aebc7fcb918faa5151cb56b8d896259bfaa2a8bd1db35e8095e89e8a0e4
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 0298834884edd89bebe6452eebe4610d
SHA-256: 976361b75120a6039d9eaee6e9000fe25797003b98e58cda207a40b1c707afd5
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 58bb2bd77e6d2a1f57947c56bd32f73d
SHA-256: 067a2ccbae6f97301f0216b141f1f72032eaa8b5b459cfa441289e2b9930edf2
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el6_8.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: f8764930b81c84f1cf76fe1104e56d22
SHA-256: 698b332343685fd9e8cb76442d72488561df05b4b5a60ce2c29fec72d33f20a9
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el6_8.i686.rpm
File outdated by:  RHSA-2017:1204
    MD5: 739dc3f386743060b258371b49d020f9
SHA-256: d448eb284bd3f3276553f571172e5af9d252241102e2185a7bf7633bf7f3d909
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 942265ec4627c62e5e4cf7790e4a3ac7
SHA-256: 737f3fb1c1ec5bbe4a14f77dcb938be2d6fe38796637d01de714f6b1411cb4da
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 2eabc129819aac360e937fed57597ba0
SHA-256: 311813b96567b7951b76c77bcde38f87a08631feb69b9319cf4f2fe9affe5543
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: c82fef491e44c21bb251281d6f46d2fb
SHA-256: 3ea576cfc3c385aeced800673a0fb3bf01b82cf03b5e92dfbeda6aa76b9ea106
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 57faad21dee148dd8ceec361d0217b07
SHA-256: e59d1a67070ac4a937c9044c5814bbccc507594326e349a74b573c6ac56d5da7
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el6_8.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: f8764930b81c84f1cf76fe1104e56d22
SHA-256: 698b332343685fd9e8cb76442d72488561df05b4b5a60ce2c29fec72d33f20a9
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el6_8.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: f5e95125d971a33d138d34267a670a3a
SHA-256: bcb3bfe14f1dc46bc096bded16399698bcc3a600541cda3bb51bb3af0bd8e4c9
 
Red Hat Enterprise Linux Workstation (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.src.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed3794005814b72f696c7ed0a4e924a4
SHA-256: 8c1c69a172d17c90cff9fb772099f5bfb1bd98f51b57ea8a9fba176230d46bea
 
x86_64:
java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 5ff395f8b27a1bd4b0d0118abd6e07c9
SHA-256: b766262800689ff7dc48fdb86e9cd190eb656d0da1f0276e371e31e20b0b2302
java-1.7.0-openjdk-accessibility-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 570a9e02f5dd6d41da4e1327d1b3f7d3
SHA-256: be3a5027b5dc50d7c750e0ebadf74f2495becc5a1f38c721b7c29b953ce3b13d
java-1.7.0-openjdk-debuginfo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 9f4f786e1be83aaf915804f32cd6a879
SHA-256: f2b2e58867e95bbe39b87ee57d3934f266986cc39ee7ddf13e4c6fa4331b38ce
java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: ed5ac07b8b25f732671848384d3f2575
SHA-256: 9eadf1b05d89721c5686efef15131756f1d5dc2b6f9f8dfd3e9609c844c22904
java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: b5c16d3084d33be91097ae9ea4adda09
SHA-256: 8630e7e1b1318cdafdc3c80373d1c32d47d7a1d2890b66f3cd0dce37fef38d79
java-1.7.0-openjdk-headless-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 185800bc1f26babb4e8a7e0f9efd0734
SHA-256: 4b1d1c3707b956f6ebf0051a978acd3f83eddd823885e1c9e962657972054f41
java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el7_3.noarch.rpm
File outdated by:  RHSA-2017:1204
    MD5: 7aeefad2de74c6574a89ca09d2506bdf
SHA-256: a0ab1f6f66063885c700229ae94b1a87ab1dabb76953fbb60fe81547179a2094
java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el7_3.x86_64.rpm
File outdated by:  RHSA-2017:1204
    MD5: 436cfbb73ecae819ff7c73a47bd76740
SHA-256: 68c0d48fc3e8e6ed96248ee9c3dc262db1fc99c1428e394adb050612aea24c54
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1369383 - CVE-2016-2183 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)
1413554 - CVE-2017-3272 OpenJDK: insufficient protected field access checks in atomic field updaters (Libraries, 8165344)
1413562 - CVE-2017-3289 OpenJDK: insecure class construction (Hotspot, 8167104)
1413583 - CVE-2017-3253 OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)
1413653 - CVE-2017-3261 OpenJDK: integer overflow in SocketOutputStream boundary check (Networking, 8164147)
1413717 - CVE-2017-3231 OpenJDK: URLClassLoader insufficient access control checks (Networking, 8151934)
1413764 - CVE-2016-5547 OpenJDK: missing ObjectIdentifier length check (Libraries, 8168705)
1413882 - CVE-2016-5552 OpenJDK: incorrect URL parsing in URLStreamHandler (Networking, 8167223)
1413906 - CVE-2017-3252 OpenJDK: LdapLoginModule incorrect userDN extraction (JAAS, 8161743)
1413911 - CVE-2016-5546 OpenJDK: incorrect ECDSA signature extraction from the DER input (Libraries, 8168714)
1413920 - CVE-2016-5548 OpenJDK: DSA implementation timing attack (Libraries, 8168728)
1413955 - CVE-2017-3241 OpenJDK: untrusted input deserialization in RMI registry and DCG (RMI, 8156802)


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/