| Errata ID | 33 |
|---|---|
| Date | 2015-01-15 |
| Source package | openjdk-7 |
| Fixed in version | 7u71-2.5.3-2.11.201501120921 |
| Description | Multiple security issues have been fixed in OpenJDK: TLS/SSL handshake attack (CVE-2014-6457) Insecure logging (CVE-2014-6502) Information disclosure in Hotspot (CVE-2014-6504) Insufficient permission checks in system logging (CVE-2014-6506) Information disclosure in ICU/2D (CVE-2014-6511) Missing source checks in datagram sockets (CVE-2014-6512) XEE in the Stax parser (CVE-2014-6517) Memmory corruption in the JVM (CVE-2014-6519) Insufficient name checks for resource bundles (CVE-2014-6531) Incorrect exception handling in CipherInputStream (CVE-2014-6558) |
| Additional notes | |
| CVE ID | CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 |
| UCS Bug number | #36985 |
