Red Hat Product Errata RHSA-2015:1007 - Security Advisory
Issued:
2015-05-13
Updated:
2015-05-13

RHSA-2015:1007 - Security Advisory

Synopsis

Critical: java-1.7.0-ibm security update

Type/Severity

Security Advisory: Critical

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated java-1.7.0-ibm packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 Supplementary.

Red Hat Product Security has rated this update as having Critical security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

Description

IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM
Java Software Development Kit.

This update fixes several vulnerabilities in the IBM Java Runtime
Environment and the IBM Java Software Development Kit. Further information
about these flaws can be found on the IBM Java Security alerts page, listed
in the References section. (CVE-2005-1080, CVE-2015-0138, CVE-2015-0192,
CVE-2015-0458, CVE-2015-0459, CVE-2015-0469, CVE-2015-0477, CVE-2015-0478,
CVE-2015-0480, CVE-2015-0488, CVE-2015-0491, CVE-2015-1914, CVE-2015-2808)

The CVE-2015-0478 issue was discovered by Florian Weimer of Red Hat
Product Security.

Note: With this update, the IBM JDK now disables RC4 SSL/TLS cipher suites
by default to address the CVE-2015-2808 issue. Refer to Red Hat Bugzilla
bug 1207101, linked to from the References section, for additional details
about this change.

All users of java-1.7.0-ibm are advised to upgrade to these updated
packages, containing the IBM Java SE 7 SR9 release. All running instances
of IBM Java must be restarted for the update to take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server 5 x86_64
  • Red Hat Enterprise Linux Server 5 i386
  • Red Hat Enterprise Linux Workstation 5 x86_64
  • Red Hat Enterprise Linux Workstation 5 i386
  • Red Hat Enterprise Linux Desktop 5 x86_64
  • Red Hat Enterprise Linux Desktop 5 i386
  • Red Hat Enterprise Linux for IBM z Systems 5 s390x
  • Red Hat Enterprise Linux for Power, big endian 5 ppc
  • Red Hat Enterprise Linux Server from RHUI 5 x86_64
  • Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

  • BZ - 606442 - CVE-2005-1080 jar: directory traversal vulnerability
  • BZ - 1207101 - CVE-2015-2808 SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher
  • BZ - 1210355 - CVE-2015-0478 OpenJDK: RSA implementation hardening (JCE, 8071726)
  • BZ - 1210829 - CVE-2015-0469 ICU: layout engine glyphStorage off-by-one (OpenJDK 2D, 8067699)
  • BZ - 1211299 - CVE-2015-0477 OpenJDK: incorrect permissions check in resource loading (Beans, 8068320)
  • BZ - 1211504 - CVE-2015-0480 OpenJDK: jar directory traversal issues (Tools, 8064601)
  • BZ - 1211543 - CVE-2015-0488 OpenJDK: certificate options parsing uncaught exception (JSSE, 8068720)
  • BZ - 1211768 - CVE-2015-0459 Oracle JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)
  • BZ - 1211769 - CVE-2015-0491 Oracle JDK: unspecified vulnerability fixed in 5.0u85, 6u95, 7u79 and 8u45 (2D)
  • BZ - 1211771 - CVE-2015-0458 Oracle JDK: unspecified vulnerability fixed in 6u95, 7u79 and 8u45 (Deployment)
  • BZ - 1219212 - CVE-2015-0192 IBM JDK: unspecified Java sandbox restrictions bypass
  • BZ - 1219215 - CVE-2015-1914 IBM JDK: unspecified partial Java sandbox restrictions bypass
  • BZ - 1219223 - CVE-2015-0138 IBM JDK: ephemeral RSA keys accepted for non-export SSL/TLS cipher suites (FREAK)

Red Hat Enterprise Linux Server 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: ddc0b0306c7c3c4b2a8af073fa8768200bc337f9603b29b07c0aa6b22605e2ff
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 15c5deeb735d53844798bb488f948c946fdd7d37b6ef0c4ac7469cf2a967e512
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: f9709c2a0d984e50c7c7ee365877e92374886a9d90bbc10d3ff78bfbe232006c
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 630cd7756e5094f95916bfacc138070d45771c5de47660503f7fbaf43bf9b583
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: c49c49ba9491e83f327051c67cfa4cba4281ec225aebea925b6b588ce60b1f7b
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: e9d41659d675f6570ac097af31ebdbdbd493d2b1c6f9c8e233c0d2b2545dd59d
i386
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506

Red Hat Enterprise Linux Workstation 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: ddc0b0306c7c3c4b2a8af073fa8768200bc337f9603b29b07c0aa6b22605e2ff
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 15c5deeb735d53844798bb488f948c946fdd7d37b6ef0c4ac7469cf2a967e512
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: f9709c2a0d984e50c7c7ee365877e92374886a9d90bbc10d3ff78bfbe232006c
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 630cd7756e5094f95916bfacc138070d45771c5de47660503f7fbaf43bf9b583
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: c49c49ba9491e83f327051c67cfa4cba4281ec225aebea925b6b588ce60b1f7b
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: e9d41659d675f6570ac097af31ebdbdbd493d2b1c6f9c8e233c0d2b2545dd59d
i386
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506

Red Hat Enterprise Linux Desktop 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: ddc0b0306c7c3c4b2a8af073fa8768200bc337f9603b29b07c0aa6b22605e2ff
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 15c5deeb735d53844798bb488f948c946fdd7d37b6ef0c4ac7469cf2a967e512
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: f9709c2a0d984e50c7c7ee365877e92374886a9d90bbc10d3ff78bfbe232006c
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 630cd7756e5094f95916bfacc138070d45771c5de47660503f7fbaf43bf9b583
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: c49c49ba9491e83f327051c67cfa4cba4281ec225aebea925b6b588ce60b1f7b
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: e9d41659d675f6570ac097af31ebdbdbd493d2b1c6f9c8e233c0d2b2545dd59d
i386
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
s390x
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.s390.rpm SHA-256: 2d19a5af1ebbb0a49b0f64a40a7eac5ece503323168fe92e77dba406d886258a
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.s390x.rpm SHA-256: 67c6619ae73e3913896fc30c0b03d999e1ee52aaac39d382f7e583a0c434b9fd
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.s390.rpm SHA-256: 538ea90f82d84f474eb6182609651b64682a8a7cb9149f703e62266608506489
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.s390x.rpm SHA-256: f0aeac6c58c68aaa5534844169540f67a30cedb02fa71248bd0bdc3e789cd026
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.s390.rpm SHA-256: e84ddc732237cc6be359cac6ed39c80bf8819cfecafdedafdeaa7ce02ae0da15
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.s390x.rpm SHA-256: 25deec221299f343eca24c9eb6369f58643f101f9b7599ac9fe1886bf3efdcfa
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.s390.rpm SHA-256: 2463a07c228c383b0fcc5dfca9b6161191fd87539b56276fea33aa9da3b1cfb2
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.s390x.rpm SHA-256: ab602473456cdd1ec5c6cef535cbb769c535b2aed659333e434f58cbe8807258
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.s390.rpm SHA-256: a20bda80935da0909f61c48ec45cf88d5ff366b84e92a0e2e6e48b15c6d181fe
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.s390x.rpm SHA-256: b242bd3f89430d06aec62aa7eb82e0a20e562c9b5cccd5b0246d52aae7ee3204

Red Hat Enterprise Linux for Power, big endian 5

SRPM
ppc
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.ppc.rpm SHA-256: 342fc5175d4a23ba8b10ea4fb56f7f4734f550cbbbe220affbd487defe076e23
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.ppc64.rpm SHA-256: abc2310175757ef0e98eeb91e8974d94436df29cc385933f7c1aed397d28475d
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.ppc.rpm SHA-256: 6ed815d57170207efaed0a59891fe83503085a9a5c730473465fad6057e3a405
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.ppc64.rpm SHA-256: 765d152e3186e01c040785ea254a95693550e2479b80db6fa6cc77e04790cf67
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.ppc.rpm SHA-256: 42321f7fe61e4855ea8c44fda47c86cae2f61f1bf51ef13b323155263015c073
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.ppc64.rpm SHA-256: 01ccb99c17d9cbc679044edf7d4d562b812ae3f5de065c0f798ee5cf7ad492b3
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.ppc.rpm SHA-256: 3236b5264b95309acc4a6618755be3c0fb6131168650fdbe2825dc5a17775911
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.ppc64.rpm SHA-256: c3e4abd1e5da8e75fc0422f803344abd8cb727fa6db5d63bf27002027b1f05a2
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.ppc.rpm SHA-256: 491841d2c2439f9ee8ee778ac4918d7ab149a24a9f75b2f52a95cb06f6fa6cab
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.ppc.rpm SHA-256: 957eb084e288c4577636881255889b4772803f96330f9598cfe4dddceddfaf16
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.ppc64.rpm SHA-256: e5a44b2260d8af1c36c546a7b6f5dc52d3ded2494bcac44b4c004336aada3d14

Red Hat Enterprise Linux Server from RHUI 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: ddc0b0306c7c3c4b2a8af073fa8768200bc337f9603b29b07c0aa6b22605e2ff
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 15c5deeb735d53844798bb488f948c946fdd7d37b6ef0c4ac7469cf2a967e512
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: f9709c2a0d984e50c7c7ee365877e92374886a9d90bbc10d3ff78bfbe232006c
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: 630cd7756e5094f95916bfacc138070d45771c5de47660503f7fbaf43bf9b583
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: c49c49ba9491e83f327051c67cfa4cba4281ec225aebea925b6b588ce60b1f7b
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.x86_64.rpm SHA-256: e9d41659d675f6570ac097af31ebdbdbd493d2b1c6f9c8e233c0d2b2545dd59d
i386
java-1.7.0-ibm-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: ac12289e55a4ab2fa79f9977673a8c82a793ce7154bdaebf6476479c68227788
java-1.7.0-ibm-demo-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b7986aba656d74ac99af70b0e7608590bb5b0e537b9fddabeea9d4ecf5244b94
java-1.7.0-ibm-devel-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: a748eee18b2645d78a342d69438303e59200f6f09070fb20b9e9bac12f043728
java-1.7.0-ibm-jdbc-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b08faf7cad57564f1d7f109c721f15f0222796150713b9345e83fa300dac23e1
java-1.7.0-ibm-plugin-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: b18b33d1e4e28f0bdc63b0409d52b7aa692286015297298137d08364222b7c95
java-1.7.0-ibm-src-1.7.0.9.0-1jpp.1.el5.i386.rpm SHA-256: 77fa3355f58b55d79ce9e7f7899f99b5926a31e9d760e1570b68b5fc22d45506

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.