Re: [SECURITY] [DSA 3080-1] openjdk-7 security update
On 11/29/2014 02:43 PM, Moritz Muehlenhoff wrote:
> -------------------------------------------------------------------------
>
>
Debian Security Advisory DSA-3080-1 security@debian.org
> http://www.debian.org/security/ Moritz
> Muehlenhoff November 29, 2014
> http://www.debian.org/security/faq
> -------------------------------------------------------------------------
>
> Package : openjdk-7 CVE ID : CVE-2014-6457
> CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511
> CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531
> CVE-2014-6558
>
> Several vulnerabilities have been discovered in OpenJDK, an
> implementation of the Oracle Java platform, resulting in the
> execution of arbitrary code, information disclosure or denial of
> service.
>
> For the stable distribution (wheezy), these problems have been
> fixed in version 7u71-2.5.3-2~deb7u1.
>
> For the upcoming stable distribution (jessie), these problems have
> been fixed in version 7u71-2.5.3-1.
>
> For the unstable distribution (sid), these problems have been fixed
> in version 7u71-2.5.3-1.
>
> We recommend that you upgrade your openjdk-7 packages.
>
> Further information about Debian Security Advisories, how to apply
> these updates to your system and frequently asked questions can be
> found at: https://www.debian.org/security/
>
> Mailing list: debian-security-announce@lists.debian.org
>
The update is still not available for Wheezy.
Is there any problem?
Kind regards
Georgi
Reply to: