Security update for java-1_6_0-ibm

Announcement ID:	SUSE-SU-2015:2166-1
Rating:	important
References:	bsc#955131
Cross-References:	CVE-2015-0204 CVE-2015-0458 CVE-2015-0459 CVE-2015-0469 CVE-2015-0477 CVE-2015-0478 CVE-2015-0480 CVE-2015-0488 CVE-2015-0491 CVE-2015-2625 CVE-2015-2808 CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4871 CVE-2015-4872 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4902 CVE-2015-4903 CVE-2015-4911 CVE-2015-5006
CVSS scores:
Affected Products:	SLES for SAP Applications 11-SP3 SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3 SUSE Linux Enterprise Software Development Kit 11 SP3

An update that solves 31 vulnerabilities can now be installed.

Description:

This update for java-1_6_0-ibm fixes the following issues:

• Version update to 6.0-16.15 bsc#955131: CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4871 CVE-2015-4872 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4902 CVE-2015-4903 CVE-2015-4911 CVE-2015-5006

CVE-2015-2808 CVE-2015-2625 CVE-2015-0491 CVE-2015-0459 CVE-2015-0469 CVE-2015-0458 CVE-2015-0480 CVE-2015-0488 CVE-2015-0478 CVE-2015-0477 CVE-2015-0204

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3
  zypper in -t patch slessp3-java-1_6_0-ibm-1538=1
• SUSE Linux Enterprise Server 11 SP3
  zypper in -t patch slessp3-java-1_6_0-ibm-1538=1
• SLES for SAP Applications 11-SP3
  zypper in -t patch slessp3-java-1_6_0-ibm-1538=1
• SUSE Linux Enterprise Software Development Kit 11 SP3
  zypper in -t patch sdksp3-java-1_6_0-ibm-1538=1
• SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2
  zypper in -t patch slessp2-java-1_6_0-ibm-1538=1

Package List:

• SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3 (nosrc x86_64 i586)
  • java-1_6_0-ibm-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3 (i586)
  • java-1_6_0-ibm-alsa-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3 (x86_64 i586)
  • java-1_6_0-ibm-plugin-1.6.0_sr16.15-46.1
  • java-1_6_0-ibm-fonts-1.6.0_sr16.15-46.1
  • java-1_6_0-ibm-jdbc-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP3 (s390x x86_64 i586 ppc64 nosrc)
  • java-1_6_0-ibm-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP3 (i586)
  • java-1_6_0-ibm-alsa-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP3 (ppc64 s390x x86_64 i586)
  • java-1_6_0-ibm-fonts-1.6.0_sr16.15-46.1
  • java-1_6_0-ibm-jdbc-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP3 (x86_64 i586)
  • java-1_6_0-ibm-plugin-1.6.0_sr16.15-46.1
• SLES for SAP Applications 11-SP3 (nosrc x86_64)
  • java-1_6_0-ibm-1.6.0_sr16.15-46.1
• SLES for SAP Applications 11-SP3 (x86_64)
  • java-1_6_0-ibm-plugin-1.6.0_sr16.15-46.1
  • java-1_6_0-ibm-fonts-1.6.0_sr16.15-46.1
  • java-1_6_0-ibm-jdbc-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Software Development Kit 11 SP3 (nosrc x86_64 i586)
  • java-1_6_0-ibm-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Software Development Kit 11 SP3 (ppc64 s390x x86_64 i586)
  • java-1_6_0-ibm-devel-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Software Development Kit 11 SP3 (x86_64 i586)
  • java-1_6_0-ibm-fonts-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 (nosrc s390x x86_64 i586)
  • java-1_6_0-ibm-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 (i586)
  • java-1_6_0-ibm-alsa-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 (s390x x86_64 i586)
  • java-1_6_0-ibm-devel-1.6.0_sr16.15-46.1
  • java-1_6_0-ibm-fonts-1.6.0_sr16.15-46.1
  • java-1_6_0-ibm-jdbc-1.6.0_sr16.15-46.1
• SUSE Linux Enterprise Server 11 SP2 LTSS 11-SP2 (x86_64 i586)
  • java-1_6_0-ibm-plugin-1.6.0_sr16.15-46.1

References:

• https://www.suse.com/security/cve/CVE-2015-0204.html
• https://www.suse.com/security/cve/CVE-2015-0458.html
• https://www.suse.com/security/cve/CVE-2015-0459.html
• https://www.suse.com/security/cve/CVE-2015-0469.html
• https://www.suse.com/security/cve/CVE-2015-0477.html
• https://www.suse.com/security/cve/CVE-2015-0478.html
• https://www.suse.com/security/cve/CVE-2015-0480.html
• https://www.suse.com/security/cve/CVE-2015-0488.html
• https://www.suse.com/security/cve/CVE-2015-0491.html
• https://www.suse.com/security/cve/CVE-2015-2625.html
• https://www.suse.com/security/cve/CVE-2015-2808.html
• https://www.suse.com/security/cve/CVE-2015-4734.html
• https://www.suse.com/security/cve/CVE-2015-4803.html
• https://www.suse.com/security/cve/CVE-2015-4805.html
• https://www.suse.com/security/cve/CVE-2015-4806.html
• https://www.suse.com/security/cve/CVE-2015-4810.html
• https://www.suse.com/security/cve/CVE-2015-4835.html
• https://www.suse.com/security/cve/CVE-2015-4840.html
• https://www.suse.com/security/cve/CVE-2015-4842.html
• https://www.suse.com/security/cve/CVE-2015-4843.html
• https://www.suse.com/security/cve/CVE-2015-4844.html
• https://www.suse.com/security/cve/CVE-2015-4860.html
• https://www.suse.com/security/cve/CVE-2015-4871.html
• https://www.suse.com/security/cve/CVE-2015-4872.html
• https://www.suse.com/security/cve/CVE-2015-4882.html
• https://www.suse.com/security/cve/CVE-2015-4883.html
• https://www.suse.com/security/cve/CVE-2015-4893.html
• https://www.suse.com/security/cve/CVE-2015-4902.html
• https://www.suse.com/security/cve/CVE-2015-4903.html
• https://www.suse.com/security/cve/CVE-2015-4911.html
• https://www.suse.com/security/cve/CVE-2015-5006.html
• https://bugzilla.suse.com/show_bug.cgi?id=955131