Security Advisory Critical: java-1.7.0-openjdk security update

Advisory: RHSA-2014:0889-1
Type: Security Advisory
Severity: Critical
Issued on: 2014-07-16
Last updated on: 2014-07-16
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux Desktop (v. 7)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux HPC Node (v. 7)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server (v. 7)
Red Hat Enterprise Linux Server AUS (v. 6.5)
Red Hat Enterprise Linux Server EUS (v. 6.5.z)
Red Hat Enterprise Linux Workstation (v. 6)
Red Hat Enterprise Linux Workstation (v. 7)
CVEs (cve.mitre.org): CVE-2014-2483
CVE-2014-2490
CVE-2014-4209
CVE-2014-4216
CVE-2014-4218
CVE-2014-4219
CVE-2014-4221
CVE-2014-4223
CVE-2014-4244
CVE-2014-4252
CVE-2014-4262
CVE-2014-4263
CVE-2014-4266

Details

Updated java-1.7.0-openjdk packages that fix multiple security issues are
now available for Red Hat Enterprise Linux 6 and 7.

The Red Hat Security Response Team has rated this update as having Critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime
Environment and the OpenJDK 7 Java Software Development Kit.

It was discovered that the Hotspot component in OpenJDK did not properly
verify bytecode from the class files. An untrusted Java application or
applet could possibly use these flaws to bypass Java sandbox restrictions.
(CVE-2014-4216, CVE-2014-4219)

A format string flaw was discovered in the Hotspot component event logger
in OpenJDK. An untrusted Java application or applet could use this flaw to
crash the Java Virtual Machine or, potentially, execute arbitrary code with
the privileges of the Java Virtual Machine. (CVE-2014-2490)

Multiple improper permission check issues were discovered in the Libraries
component in OpenJDK. An untrusted Java application or applet could use
these flaws to bypass Java sandbox restrictions. (CVE-2014-4223,
CVE-2014-4262, CVE-2014-2483)

Multiple flaws were discovered in the JMX, Libraries, Security, and
Serviceability components in OpenJDK. An untrusted Java application or
applet could use these flaws to bypass certain Java sandbox restrictions.
(CVE-2014-4209, CVE-2014-4218, CVE-2014-4221, CVE-2014-4252, CVE-2014-4266)

It was discovered that the RSA algorithm in the Security component in
OpenJDK did not sufficiently perform blinding while performing operations
that were using private keys. An attacker able to measure timing
differences of those operations could possibly leak information about the
used keys. (CVE-2014-4244)

The Diffie-Hellman (DH) key exchange algorithm implementation in the
Security component in OpenJDK failed to validate public DH parameters
properly. This could cause OpenJDK to accept and use weak parameters,
allowing an attacker to recover the negotiated key. (CVE-2014-4263)

The CVE-2014-4262 issue was discovered by Florian Weimer of Red Hat
Product Security.

Note: If the web browser plug-in provided by the icedtea-web package was
installed, the issues exposed via Java applets could have been exploited
without user interaction if a user visited a malicious website.

All users of java-1.7.0-openjdk are advised to upgrade to these updated
packages, which resolve these issues. All running instances of OpenJDK Java
must be restarted for the update to take effect.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.src.rpm
File outdated by:  RHBA-2015:1008
    MD5: c13ac505b969f3824e0c960373fc4df4
SHA-256: 899ee55ce84347cd86a070077ebe5d660cd4024d3f5c5be102aeabc2da376767
 
IA-32:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 072977f683a9d24135ecc19a546b2c81
SHA-256: 5250328064da4626af6d7527361cc743711d1762c037e646ac2fd0fc4694e0a6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 4dd156ce8167830017d40e202d2837ae
SHA-256: 2e729bc95cbe34a25673568f41a962504ccc9ba39060016d9756014d98d1efe3
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 7d88589c80f58c276fd352d47ea63bde
SHA-256: f09d6b09368b71381e76568934b4b53a91576a7949713436b11a07f8d2aacb4f
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 613b8595600ed4488048127e636b044a
SHA-256: dde7e1e5f61928e7a33e7399bfeae9f550a93a08ccd34563424d1c884e519973
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm
File outdated by:  RHBA-2015:1008
    MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 81ca61ca69f502574d0844afd2818e63
SHA-256: 9fa17a08b97f2f1643200b34f610fa7f1eae8b53dcfe73071d376695cfc0cfd7
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: f1dd95d6442e7cbb637275a46d9a6f02
SHA-256: 01f60807ecb1eebd907a8cfc223585d1facaddf3b03facc997eaa5bc3790b9fc
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: c3d03fba805659711ad5299f02af1bc6
SHA-256: 64df99e7b260b942b2e0fc50b178806726459aacbb24f8518293987564170143
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: 80c1be772863daedc49c763ceda3f567
SHA-256: 7eb884a319d930fe1948c79a7f0683097407dac5a2ed74099799f791e646cbfd
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: e5c25f880f55ed5037a6d3fd0be4ff43
SHA-256: b59b7de832e1de744b68c8319658b54c61728b8dbdd20cc074c27ae5e79f488e
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm
File outdated by:  RHBA-2015:1008
    MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: d8c8b4d441bdea329d9f9a4a78031947
SHA-256: 46bf594da1727c4fdd6ea3ad92eda6c2adb9e5a2e0b2872f117558d3f9ebc403
 
Red Hat Enterprise Linux Desktop (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.src.rpm
File outdated by:  RHBA-2015:1151
    MD5: cb82c81af1c2faa7b3c1cf74c72164c4
SHA-256: e20802edff49488591919231cb41bf967014ec9b64b43042a692bb7114dfbfef
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: a148a7b238d217fc089ddfbd6b026ec7
SHA-256: 2e0dba3fc0e4e0a21e0ab5df26c95855260962f165f100cb28a9823c9ad71378
java-1.7.0-openjdk-accessibility-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 5c4cf7215c2e763c6da331542a7dc516
SHA-256: 3616b374ba406d5c78cba1e31b3a76921a90ae44b692c202d8654bd52bf8f0b6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 0385225dec2e3c863b5ac5328e3771f7
SHA-256: cb5861aa2c4567bbffafde3ba984922f5cb8b06a04b5dbc770d517101bebae88
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: d8a33c61e2f9cd992433c7673878df9e
SHA-256: 82c9178c35cef629612e4169628d9acf5976996f47c1276f66bc90120129ad97
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: fad8409a38e4497e8203ab7ff63c4b4c
SHA-256: aacf0c719e4a6305931ea43642364f09b720621569acc6f53ac9477e780bc958
java-1.7.0-openjdk-headless-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 15c74ca516ef17139214078b8b513984
SHA-256: 9eda36554fa732d0d2538b415f895091865b43d2d18de9359ef1551be01af445
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el7_0.noarch.rpm
File outdated by:  RHBA-2015:1151
    MD5: 3e94df9ee09e770022290ad571c23a5b
SHA-256: bd039ec87a4a7bfeaffe71630d75a3cdb2425a94aa567c30747728709d4c2962
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: acd542e9577ffcf9e2ff72b76725aab1
SHA-256: b10a17439d75b7b4719bed00afda69b59eb8851d1d44592adc3dffdbe4795f45
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.src.rpm
File outdated by:  RHBA-2015:1008
    MD5: c13ac505b969f3824e0c960373fc4df4
SHA-256: 899ee55ce84347cd86a070077ebe5d660cd4024d3f5c5be102aeabc2da376767
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: f1dd95d6442e7cbb637275a46d9a6f02
SHA-256: 01f60807ecb1eebd907a8cfc223585d1facaddf3b03facc997eaa5bc3790b9fc
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: c3d03fba805659711ad5299f02af1bc6
SHA-256: 64df99e7b260b942b2e0fc50b178806726459aacbb24f8518293987564170143
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: 80c1be772863daedc49c763ceda3f567
SHA-256: 7eb884a319d930fe1948c79a7f0683097407dac5a2ed74099799f791e646cbfd
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: e5c25f880f55ed5037a6d3fd0be4ff43
SHA-256: b59b7de832e1de744b68c8319658b54c61728b8dbdd20cc074c27ae5e79f488e
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm
File outdated by:  RHBA-2015:1008
    MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: d8c8b4d441bdea329d9f9a4a78031947
SHA-256: 46bf594da1727c4fdd6ea3ad92eda6c2adb9e5a2e0b2872f117558d3f9ebc403
 
Red Hat Enterprise Linux HPC Node (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.src.rpm
File outdated by:  RHBA-2015:1151
    MD5: cb82c81af1c2faa7b3c1cf74c72164c4
SHA-256: e20802edff49488591919231cb41bf967014ec9b64b43042a692bb7114dfbfef
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: a148a7b238d217fc089ddfbd6b026ec7
SHA-256: 2e0dba3fc0e4e0a21e0ab5df26c95855260962f165f100cb28a9823c9ad71378
java-1.7.0-openjdk-accessibility-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 5c4cf7215c2e763c6da331542a7dc516
SHA-256: 3616b374ba406d5c78cba1e31b3a76921a90ae44b692c202d8654bd52bf8f0b6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 0385225dec2e3c863b5ac5328e3771f7
SHA-256: cb5861aa2c4567bbffafde3ba984922f5cb8b06a04b5dbc770d517101bebae88
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: d8a33c61e2f9cd992433c7673878df9e
SHA-256: 82c9178c35cef629612e4169628d9acf5976996f47c1276f66bc90120129ad97
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: fad8409a38e4497e8203ab7ff63c4b4c
SHA-256: aacf0c719e4a6305931ea43642364f09b720621569acc6f53ac9477e780bc958
java-1.7.0-openjdk-headless-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 15c74ca516ef17139214078b8b513984
SHA-256: 9eda36554fa732d0d2538b415f895091865b43d2d18de9359ef1551be01af445
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el7_0.noarch.rpm
File outdated by:  RHBA-2015:1151
    MD5: 3e94df9ee09e770022290ad571c23a5b
SHA-256: bd039ec87a4a7bfeaffe71630d75a3cdb2425a94aa567c30747728709d4c2962
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: acd542e9577ffcf9e2ff72b76725aab1
SHA-256: b10a17439d75b7b4719bed00afda69b59eb8851d1d44592adc3dffdbe4795f45
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.src.rpm
File outdated by:  RHBA-2015:1008
    MD5: c13ac505b969f3824e0c960373fc4df4
SHA-256: 899ee55ce84347cd86a070077ebe5d660cd4024d3f5c5be102aeabc2da376767
 
IA-32:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 072977f683a9d24135ecc19a546b2c81
SHA-256: 5250328064da4626af6d7527361cc743711d1762c037e646ac2fd0fc4694e0a6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 4dd156ce8167830017d40e202d2837ae
SHA-256: 2e729bc95cbe34a25673568f41a962504ccc9ba39060016d9756014d98d1efe3
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 7d88589c80f58c276fd352d47ea63bde
SHA-256: f09d6b09368b71381e76568934b4b53a91576a7949713436b11a07f8d2aacb4f
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 613b8595600ed4488048127e636b044a
SHA-256: dde7e1e5f61928e7a33e7399bfeae9f550a93a08ccd34563424d1c884e519973
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm
File outdated by:  RHBA-2015:1008
    MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 81ca61ca69f502574d0844afd2818e63
SHA-256: 9fa17a08b97f2f1643200b34f610fa7f1eae8b53dcfe73071d376695cfc0cfd7
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: f1dd95d6442e7cbb637275a46d9a6f02
SHA-256: 01f60807ecb1eebd907a8cfc223585d1facaddf3b03facc997eaa5bc3790b9fc
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: c3d03fba805659711ad5299f02af1bc6
SHA-256: 64df99e7b260b942b2e0fc50b178806726459aacbb24f8518293987564170143
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: 80c1be772863daedc49c763ceda3f567
SHA-256: 7eb884a319d930fe1948c79a7f0683097407dac5a2ed74099799f791e646cbfd
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: e5c25f880f55ed5037a6d3fd0be4ff43
SHA-256: b59b7de832e1de744b68c8319658b54c61728b8dbdd20cc074c27ae5e79f488e
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm
File outdated by:  RHBA-2015:1008
    MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: d8c8b4d441bdea329d9f9a4a78031947
SHA-256: 46bf594da1727c4fdd6ea3ad92eda6c2adb9e5a2e0b2872f117558d3f9ebc403
 
Red Hat Enterprise Linux Server (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.src.rpm
File outdated by:  RHBA-2015:1151
    MD5: cb82c81af1c2faa7b3c1cf74c72164c4
SHA-256: e20802edff49488591919231cb41bf967014ec9b64b43042a692bb7114dfbfef
 
PPC:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.ppc64.rpm
File outdated by:  RHBA-2015:1151
    MD5: f43a75ac082ae3552c2edea68c8bec83
SHA-256: c922e9373b0b8def9bf7775fc94473458dd0e413685e2989b25935f0cc35dd2d
java-1.7.0-openjdk-accessibility-1.7.0.65-2.5.1.2.el7_0.ppc64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 0666873766b85615c07b11fe5424d790
SHA-256: b7f2e6e9356105e7d76845eb3608bf8309cc2f3143b9b3bfc03320fe5a2e61d3
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el7_0.ppc64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 798089d187d8672a396b3c353eecd8b2
SHA-256: 686bf156b5ba4b2920e87b7e9dcf16c2377b51822a959be5722c9ab55f342402
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el7_0.ppc64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 9f7dfe2cb950aa7ce635a8e9882d1208
SHA-256: e7b78706877ee61d0948d40f5f927ecbc7594e0d6b85c3cc49b78df84cc6b246
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el7_0.ppc64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 9a04db25d132ea2a7f8b0847d765e77c
SHA-256: 4c415b4e7c1630efd6f19b3b64311be3d45270d68c9fd1d8d4fee9b0ec1d87b7
java-1.7.0-openjdk-headless-1.7.0.65-2.5.1.2.el7_0.ppc64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 1f1e6f82a7775064df28d2ac6c6f1fde
SHA-256: 515bfedece069c8297f9e6fcce4607535124770acf8cece44562002116be734c
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el7_0.noarch.rpm
File outdated by:  RHBA-2015:1151
    MD5: 3e94df9ee09e770022290ad571c23a5b
SHA-256: bd039ec87a4a7bfeaffe71630d75a3cdb2425a94aa567c30747728709d4c2962
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el7_0.ppc64.rpm
File outdated by:  RHBA-2015:1151
    MD5: c698fd15cd6133c533caf6794488d317
SHA-256: 35ee63b2a12780e21bd9d9abd0e75c933e870a3486aecec9fda69344485b70aa
 
s390x:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.s390x.rpm
File outdated by:  RHBA-2015:1151
    MD5: 2d36bfa4a7072e0112951c2526bbb509
SHA-256: d688948859e8d186e38e5cde081f7db5bc82e85caf7866d30e86784836d1e2fd
java-1.7.0-openjdk-accessibility-1.7.0.65-2.5.1.2.el7_0.s390x.rpm
File outdated by:  RHBA-2015:1151
    MD5: 3a53c9b819653466790e1e64437c8f28
SHA-256: e9afa1630f63c0f770f256dad1f3eb6d7ac6cb324f21d4a204b1a3835cf9080c
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el7_0.s390x.rpm
File outdated by:  RHBA-2015:1151
    MD5: e1e8057815b59c7f77609722123438ab
SHA-256: e60c23de996509d79eee69ef765896b032448d9721034aed1cd9481d3a414305
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el7_0.s390x.rpm
File outdated by:  RHBA-2015:1151
    MD5: 2e8c76a7c30fd8adc6dc56b34285b42a
SHA-256: 90b8f7be81c9f449f21274307a67b023ba4914526806007e1874a04138730300
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el7_0.s390x.rpm
File outdated by:  RHBA-2015:1151
    MD5: a0986a92a1e791a565c895c4e10412fc
SHA-256: 67bfb538bd9f19789564a9cabf971216bc26f16da60c90f8e2507e3fc2e8400b
java-1.7.0-openjdk-headless-1.7.0.65-2.5.1.2.el7_0.s390x.rpm
File outdated by:  RHBA-2015:1151
    MD5: a5055abf2c5a4f4e078fde120a0b11b0
SHA-256: 95af695b06f496505a763ce8162cf1cc354a2ff055a18123772841e5b23e3db2
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el7_0.noarch.rpm
File outdated by:  RHBA-2015:1151
    MD5: 3e94df9ee09e770022290ad571c23a5b
SHA-256: bd039ec87a4a7bfeaffe71630d75a3cdb2425a94aa567c30747728709d4c2962
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el7_0.s390x.rpm
File outdated by:  RHBA-2015:1151
    MD5: 7d9ec9fe047cc9b37e8256eee84fd9f5
SHA-256: 1fbf7f28d271809bb8caf475e7c1184fcd680c1d45472eb630d554ea419f21d7
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: a148a7b238d217fc089ddfbd6b026ec7
SHA-256: 2e0dba3fc0e4e0a21e0ab5df26c95855260962f165f100cb28a9823c9ad71378
java-1.7.0-openjdk-accessibility-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 5c4cf7215c2e763c6da331542a7dc516
SHA-256: 3616b374ba406d5c78cba1e31b3a76921a90ae44b692c202d8654bd52bf8f0b6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 0385225dec2e3c863b5ac5328e3771f7
SHA-256: cb5861aa2c4567bbffafde3ba984922f5cb8b06a04b5dbc770d517101bebae88
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: d8a33c61e2f9cd992433c7673878df9e
SHA-256: 82c9178c35cef629612e4169628d9acf5976996f47c1276f66bc90120129ad97
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: fad8409a38e4497e8203ab7ff63c4b4c
SHA-256: aacf0c719e4a6305931ea43642364f09b720621569acc6f53ac9477e780bc958
java-1.7.0-openjdk-headless-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 15c74ca516ef17139214078b8b513984
SHA-256: 9eda36554fa732d0d2538b415f895091865b43d2d18de9359ef1551be01af445
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el7_0.noarch.rpm
File outdated by:  RHBA-2015:1151
    MD5: 3e94df9ee09e770022290ad571c23a5b
SHA-256: bd039ec87a4a7bfeaffe71630d75a3cdb2425a94aa567c30747728709d4c2962
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: acd542e9577ffcf9e2ff72b76725aab1
SHA-256: b10a17439d75b7b4719bed00afda69b59eb8851d1d44592adc3dffdbe4795f45
 
Red Hat Enterprise Linux Server AUS (v. 6.5)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.src.rpm
File outdated by:  RHBA-2015:1008
    MD5: c13ac505b969f3824e0c960373fc4df4
SHA-256: 899ee55ce84347cd86a070077ebe5d660cd4024d3f5c5be102aeabc2da376767
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: f1dd95d6442e7cbb637275a46d9a6f02
SHA-256: 01f60807ecb1eebd907a8cfc223585d1facaddf3b03facc997eaa5bc3790b9fc
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: c3d03fba805659711ad5299f02af1bc6
SHA-256: 64df99e7b260b942b2e0fc50b178806726459aacbb24f8518293987564170143
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: 80c1be772863daedc49c763ceda3f567
SHA-256: 7eb884a319d930fe1948c79a7f0683097407dac5a2ed74099799f791e646cbfd
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: e5c25f880f55ed5037a6d3fd0be4ff43
SHA-256: b59b7de832e1de744b68c8319658b54c61728b8dbdd20cc074c27ae5e79f488e
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm     MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: d8c8b4d441bdea329d9f9a4a78031947
SHA-256: 46bf594da1727c4fdd6ea3ad92eda6c2adb9e5a2e0b2872f117558d3f9ebc403
 
Red Hat Enterprise Linux Server EUS (v. 6.5.z)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.src.rpm
File outdated by:  RHBA-2015:1008
    MD5: c13ac505b969f3824e0c960373fc4df4
SHA-256: 899ee55ce84347cd86a070077ebe5d660cd4024d3f5c5be102aeabc2da376767
 
IA-32:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.i686.rpm     MD5: 072977f683a9d24135ecc19a546b2c81
SHA-256: 5250328064da4626af6d7527361cc743711d1762c037e646ac2fd0fc4694e0a6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.i686.rpm     MD5: 4dd156ce8167830017d40e202d2837ae
SHA-256: 2e729bc95cbe34a25673568f41a962504ccc9ba39060016d9756014d98d1efe3
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.i686.rpm     MD5: 7d88589c80f58c276fd352d47ea63bde
SHA-256: f09d6b09368b71381e76568934b4b53a91576a7949713436b11a07f8d2aacb4f
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.i686.rpm     MD5: 613b8595600ed4488048127e636b044a
SHA-256: dde7e1e5f61928e7a33e7399bfeae9f550a93a08ccd34563424d1c884e519973
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm     MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.i686.rpm     MD5: 81ca61ca69f502574d0844afd2818e63
SHA-256: 9fa17a08b97f2f1643200b34f610fa7f1eae8b53dcfe73071d376695cfc0cfd7
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: f1dd95d6442e7cbb637275a46d9a6f02
SHA-256: 01f60807ecb1eebd907a8cfc223585d1facaddf3b03facc997eaa5bc3790b9fc
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: c3d03fba805659711ad5299f02af1bc6
SHA-256: 64df99e7b260b942b2e0fc50b178806726459aacbb24f8518293987564170143
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: 80c1be772863daedc49c763ceda3f567
SHA-256: 7eb884a319d930fe1948c79a7f0683097407dac5a2ed74099799f791e646cbfd
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: e5c25f880f55ed5037a6d3fd0be4ff43
SHA-256: b59b7de832e1de744b68c8319658b54c61728b8dbdd20cc074c27ae5e79f488e
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm     MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm     MD5: d8c8b4d441bdea329d9f9a4a78031947
SHA-256: 46bf594da1727c4fdd6ea3ad92eda6c2adb9e5a2e0b2872f117558d3f9ebc403
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.src.rpm
File outdated by:  RHBA-2015:1008
    MD5: c13ac505b969f3824e0c960373fc4df4
SHA-256: 899ee55ce84347cd86a070077ebe5d660cd4024d3f5c5be102aeabc2da376767
 
IA-32:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 072977f683a9d24135ecc19a546b2c81
SHA-256: 5250328064da4626af6d7527361cc743711d1762c037e646ac2fd0fc4694e0a6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 4dd156ce8167830017d40e202d2837ae
SHA-256: 2e729bc95cbe34a25673568f41a962504ccc9ba39060016d9756014d98d1efe3
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 7d88589c80f58c276fd352d47ea63bde
SHA-256: f09d6b09368b71381e76568934b4b53a91576a7949713436b11a07f8d2aacb4f
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 613b8595600ed4488048127e636b044a
SHA-256: dde7e1e5f61928e7a33e7399bfeae9f550a93a08ccd34563424d1c884e519973
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm
File outdated by:  RHBA-2015:1008
    MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.i686.rpm
File outdated by:  RHBA-2015:1008
    MD5: 81ca61ca69f502574d0844afd2818e63
SHA-256: 9fa17a08b97f2f1643200b34f610fa7f1eae8b53dcfe73071d376695cfc0cfd7
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: f1dd95d6442e7cbb637275a46d9a6f02
SHA-256: 01f60807ecb1eebd907a8cfc223585d1facaddf3b03facc997eaa5bc3790b9fc
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: c3d03fba805659711ad5299f02af1bc6
SHA-256: 64df99e7b260b942b2e0fc50b178806726459aacbb24f8518293987564170143
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: 80c1be772863daedc49c763ceda3f567
SHA-256: 7eb884a319d930fe1948c79a7f0683097407dac5a2ed74099799f791e646cbfd
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: e5c25f880f55ed5037a6d3fd0be4ff43
SHA-256: b59b7de832e1de744b68c8319658b54c61728b8dbdd20cc074c27ae5e79f488e
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el6_5.noarch.rpm
File outdated by:  RHBA-2015:1008
    MD5: 9365927ad01113e982094b58272407ef
SHA-256: 0c3369661bb3b15e539d891fe23781e256dbabc7ba3f0e29fb65ac285ef8f233
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el6_5.x86_64.rpm
File outdated by:  RHBA-2015:1008
    MD5: d8c8b4d441bdea329d9f9a4a78031947
SHA-256: 46bf594da1727c4fdd6ea3ad92eda6c2adb9e5a2e0b2872f117558d3f9ebc403
 
Red Hat Enterprise Linux Workstation (v. 7)

SRPMS:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.src.rpm
File outdated by:  RHBA-2015:1151
    MD5: cb82c81af1c2faa7b3c1cf74c72164c4
SHA-256: e20802edff49488591919231cb41bf967014ec9b64b43042a692bb7114dfbfef
 
x86_64:
java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: a148a7b238d217fc089ddfbd6b026ec7
SHA-256: 2e0dba3fc0e4e0a21e0ab5df26c95855260962f165f100cb28a9823c9ad71378
java-1.7.0-openjdk-accessibility-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 5c4cf7215c2e763c6da331542a7dc516
SHA-256: 3616b374ba406d5c78cba1e31b3a76921a90ae44b692c202d8654bd52bf8f0b6
java-1.7.0-openjdk-debuginfo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 0385225dec2e3c863b5ac5328e3771f7
SHA-256: cb5861aa2c4567bbffafde3ba984922f5cb8b06a04b5dbc770d517101bebae88
java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: d8a33c61e2f9cd992433c7673878df9e
SHA-256: 82c9178c35cef629612e4169628d9acf5976996f47c1276f66bc90120129ad97
java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: fad8409a38e4497e8203ab7ff63c4b4c
SHA-256: aacf0c719e4a6305931ea43642364f09b720621569acc6f53ac9477e780bc958
java-1.7.0-openjdk-headless-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: 15c74ca516ef17139214078b8b513984
SHA-256: 9eda36554fa732d0d2538b415f895091865b43d2d18de9359ef1551be01af445
java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el7_0.noarch.rpm
File outdated by:  RHBA-2015:1151
    MD5: 3e94df9ee09e770022290ad571c23a5b
SHA-256: bd039ec87a4a7bfeaffe71630d75a3cdb2425a94aa567c30747728709d4c2962
java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el7_0.x86_64.rpm
File outdated by:  RHBA-2015:1151
    MD5: acd542e9577ffcf9e2ff72b76725aab1
SHA-256: b10a17439d75b7b4719bed00afda69b59eb8851d1d44592adc3dffdbe4795f45
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1075795 - CVE-2014-4262 OpenJDK: AtomicReferenceFieldUpdater missing primitive type check (Libraries, 8039520)
1119475 - CVE-2014-4244 OpenJDK: RSA blinding issues (Security, 8031346)
1119476 - CVE-2014-4263 OpenJDK: insufficient Diffie-Hellman public key validation (Security, 8037162)
1119483 - CVE-2014-4221 OpenJDK: MethodHandles.Lookup insufficient modifiers checks (Libraries, 8035788)
1119596 - CVE-2014-4219 OpenJDK: Bytecode verification does not prevent ctor calls to this() and super() (Hotspot, 8035119)
1119597 - CVE-2014-2490 OpenJDK: Event logger format string vulnerability (Hotspot, 8037076)
1119600 - CVE-2014-4216 OpenJDK: Incorrect generic signature attribute parsing (Hotspot, 8037076)
1119602 - CVE-2014-4223 OpenJDK: Incorrect handling of invocations with exhausted ranks (Libraries, 8035793)
1119608 - CVE-2014-4209 OpenJDK: SubjectDelegator protection insufficient (JMX, 8029755)
1119611 - CVE-2014-4218 OpenJDK: Clone interfaces passed to proxy methods (Libraries, 8035009)
1119613 - CVE-2014-4252 OpenJDK: Prevent instantiation of service with non-public constructor (Security, 8035004)
1119615 - CVE-2014-4266 OpenJDK: InfoBuilder incorrect return values (Serviceability, 8033301)
1119626 - CVE-2014-2483 OpenJDK: Restrict use of privileged annotations (Libraries, 8034985)


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/