Synopsis

Critical: java-1.7.0-ibm security update

Type/Severity

Security Advisory: Critical

Topic

An update for java-1.7.0-ibm is now available for Red Hat Enterprise Linux 5
Supplementary.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

Description

IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM Java
Software Development Kit.

This update upgrades IBM Java SE 7 to version 7 SR9-FP50.

Security Fix(es):

• This update fixes multiple vulnerabilities in the IBM Java Runtime Environment
  and the IBM Java Software Development Kit. Further information about these flaws
  can be found on the IBM Java Security alerts page, listed in the References
  section. (CVE-2016-3511, CVE-2016-3598)
  

Solution

For details on how to apply this update, which includes the changes described in
this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of IBM Java must be restarted for this update to take
effect.

Affected Products

• Red Hat Enterprise Linux Server 5 x86_64
• Red Hat Enterprise Linux Server 5 i386
• Red Hat Enterprise Linux Workstation 5 x86_64
• Red Hat Enterprise Linux Workstation 5 i386
• Red Hat Enterprise Linux Desktop 5 x86_64
• Red Hat Enterprise Linux Desktop 5 i386
• Red Hat Enterprise Linux for IBM z Systems 5 s390x
• Red Hat Enterprise Linux for Power, big endian 5 ppc

Fixes

• BZ - 1356971 - CVE-2016-3598 OpenJDK: incorrect handling of MethodHandles.dropArguments() argument (Libraries, 8155985)
• BZ - 1358168 - CVE-2016-3511 Oracle JDK: unspecified vulnerability fixed in 7u111 and 8u101 (Deployment)

CVEs

• CVE-2016-3511
• CVE-2016-3598

References

• https://access.redhat.com/security/updates/classification/#critical
• http://www.ibm.com/developerworks/java/jdk/alerts/

Red Hat Enterprise Linux Server 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 24c744ef915fa33d12adcfacb4b09ba1e5c34b3131388a9624bbf8c72fec7cef
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 4d2c2bf4a5377fe986ceb232440641a3aa8cef4ac91c487cbe8fa9f67faf8c11
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 0df19aad946b6924bf13bc11cc2d60acce4e7833b7c215f5904a4c1a48c83919
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: a25d5bd99edea1348a41ab72a7edabcebe4805304efda19ba991cb25ef11c991
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: fd82861eda61643e556ac01604b1cb1f57c81fa906cffb89171eadc8bc436c63
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 8343a5df9d0af4b0b3965bd85eec0d59b142dc9d5ec69edfd43c478c8b2718aa
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 1b2e38fffda820aa14fc4a2c175ab8d6dc79c81cf07d1166080f6cd87266e1bf
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: e804cd3da672fd0b0960250ad66d8df968dbbf707d9374ca9433b8e8d3e66b74
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 66b0415deec966c071e495052255b40b5237918cc93b3e3bedce746d5dbb6f8f
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 98a68d22862b6479df0b0478610c2b0db0440fee102419ce0d1fd66341eb11c3
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 58e12f16ce6d13b715f24e38e0c56f8ab101776a4311a38e84eaf5068d1a2ce6
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: ee21059aac3c280a27a988db51fe8a497fa22635c8605c7c61df27ba191d3221
i386
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 24c744ef915fa33d12adcfacb4b09ba1e5c34b3131388a9624bbf8c72fec7cef
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 0df19aad946b6924bf13bc11cc2d60acce4e7833b7c215f5904a4c1a48c83919
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: fd82861eda61643e556ac01604b1cb1f57c81fa906cffb89171eadc8bc436c63
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 1b2e38fffda820aa14fc4a2c175ab8d6dc79c81cf07d1166080f6cd87266e1bf
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 66b0415deec966c071e495052255b40b5237918cc93b3e3bedce746d5dbb6f8f
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 58e12f16ce6d13b715f24e38e0c56f8ab101776a4311a38e84eaf5068d1a2ce6

Red Hat Enterprise Linux Workstation 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 24c744ef915fa33d12adcfacb4b09ba1e5c34b3131388a9624bbf8c72fec7cef
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 4d2c2bf4a5377fe986ceb232440641a3aa8cef4ac91c487cbe8fa9f67faf8c11
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 0df19aad946b6924bf13bc11cc2d60acce4e7833b7c215f5904a4c1a48c83919
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: a25d5bd99edea1348a41ab72a7edabcebe4805304efda19ba991cb25ef11c991
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: fd82861eda61643e556ac01604b1cb1f57c81fa906cffb89171eadc8bc436c63
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 8343a5df9d0af4b0b3965bd85eec0d59b142dc9d5ec69edfd43c478c8b2718aa
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 1b2e38fffda820aa14fc4a2c175ab8d6dc79c81cf07d1166080f6cd87266e1bf
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: e804cd3da672fd0b0960250ad66d8df968dbbf707d9374ca9433b8e8d3e66b74
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 66b0415deec966c071e495052255b40b5237918cc93b3e3bedce746d5dbb6f8f
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 98a68d22862b6479df0b0478610c2b0db0440fee102419ce0d1fd66341eb11c3
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 58e12f16ce6d13b715f24e38e0c56f8ab101776a4311a38e84eaf5068d1a2ce6
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: ee21059aac3c280a27a988db51fe8a497fa22635c8605c7c61df27ba191d3221
i386
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 24c744ef915fa33d12adcfacb4b09ba1e5c34b3131388a9624bbf8c72fec7cef
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 0df19aad946b6924bf13bc11cc2d60acce4e7833b7c215f5904a4c1a48c83919
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: fd82861eda61643e556ac01604b1cb1f57c81fa906cffb89171eadc8bc436c63
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 1b2e38fffda820aa14fc4a2c175ab8d6dc79c81cf07d1166080f6cd87266e1bf
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 66b0415deec966c071e495052255b40b5237918cc93b3e3bedce746d5dbb6f8f
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 58e12f16ce6d13b715f24e38e0c56f8ab101776a4311a38e84eaf5068d1a2ce6

Red Hat Enterprise Linux Desktop 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 24c744ef915fa33d12adcfacb4b09ba1e5c34b3131388a9624bbf8c72fec7cef
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 4d2c2bf4a5377fe986ceb232440641a3aa8cef4ac91c487cbe8fa9f67faf8c11
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 0df19aad946b6924bf13bc11cc2d60acce4e7833b7c215f5904a4c1a48c83919
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: a25d5bd99edea1348a41ab72a7edabcebe4805304efda19ba991cb25ef11c991
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: fd82861eda61643e556ac01604b1cb1f57c81fa906cffb89171eadc8bc436c63
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 8343a5df9d0af4b0b3965bd85eec0d59b142dc9d5ec69edfd43c478c8b2718aa
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 1b2e38fffda820aa14fc4a2c175ab8d6dc79c81cf07d1166080f6cd87266e1bf
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: e804cd3da672fd0b0960250ad66d8df968dbbf707d9374ca9433b8e8d3e66b74
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 66b0415deec966c071e495052255b40b5237918cc93b3e3bedce746d5dbb6f8f
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: 98a68d22862b6479df0b0478610c2b0db0440fee102419ce0d1fd66341eb11c3
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 58e12f16ce6d13b715f24e38e0c56f8ab101776a4311a38e84eaf5068d1a2ce6
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.x86_64.rpm	SHA-256: ee21059aac3c280a27a988db51fe8a497fa22635c8605c7c61df27ba191d3221
i386
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 24c744ef915fa33d12adcfacb4b09ba1e5c34b3131388a9624bbf8c72fec7cef
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 0df19aad946b6924bf13bc11cc2d60acce4e7833b7c215f5904a4c1a48c83919
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: fd82861eda61643e556ac01604b1cb1f57c81fa906cffb89171eadc8bc436c63
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 1b2e38fffda820aa14fc4a2c175ab8d6dc79c81cf07d1166080f6cd87266e1bf
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 66b0415deec966c071e495052255b40b5237918cc93b3e3bedce746d5dbb6f8f
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.i386.rpm	SHA-256: 58e12f16ce6d13b715f24e38e0c56f8ab101776a4311a38e84eaf5068d1a2ce6

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
s390x
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.s390.rpm	SHA-256: a65e531ada58c97c6de528438849e209cec00031908b42e7c4bbae6d7a526de3
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.s390x.rpm	SHA-256: 613088574a05921ac82111443d6e604401c8f95f059427acf734a7e2adabdc82
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.s390.rpm	SHA-256: e449be99e082ec25775c8c8361ca9af8cc5a2ddbe62b3427a94916c69eea9794
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.s390x.rpm	SHA-256: 334dd8ce33d9e05e658e0f37cc041c91162fea7daea6dfe87a9c49f41614062e
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.s390.rpm	SHA-256: 48e9cee3b7e44aeb4f382e4153d13d6fb87cdf35f1e50436bd286fbc90c77a82
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.s390x.rpm	SHA-256: ca5559a0301f42e32ec4a1610da7401730343e9230603eae188c0398e0b08e27
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.s390.rpm	SHA-256: 4dfdd4cf425f323fa94595ece8fb64a5e800f6f586fbca371b65aad08a02c3f2
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.s390x.rpm	SHA-256: 9718adffa9de1e43a544019519a6be3cbf22e1c43168d79d43eded353ced281a
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.s390.rpm	SHA-256: 907a9f139be50c33784867deee47d72dd2d448cb7f8ad1878765f9dd13ffbf78
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.s390x.rpm	SHA-256: bf1082af030c0817aac7b801923d8cabede2b2095552a1c3f32eb34be9dddc77

Red Hat Enterprise Linux for Power, big endian 5

SRPM
ppc
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.ppc.rpm	SHA-256: 3cd2b51ab4dd8e094f628a1906f1deddc52872c3aa3cee7ff3369d88828aa7b7
java-1.7.0-ibm-1.7.0.9.50-1jpp.1.el5_11.ppc64.rpm	SHA-256: 418de09d748429417d38ddcbe287574ae31d32e9cbb399f7ceab57ffbe2f2787
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.ppc.rpm	SHA-256: fda47737502b40d53f00972c22f6812049bb9b11f47351e8a0f62dd9840e1406
java-1.7.0-ibm-demo-1.7.0.9.50-1jpp.1.el5_11.ppc64.rpm	SHA-256: 65fc4a2cd0db7ccc5c4451efdd63c850fd73608e9957ca8fbd7c83144ed480b9
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.ppc.rpm	SHA-256: da611c0d94bd82fe1561d5c65009ec274a75733cdb486552618c4717973432fb
java-1.7.0-ibm-devel-1.7.0.9.50-1jpp.1.el5_11.ppc64.rpm	SHA-256: d9bcc8cfd935ff89730e97e13061cd74f520dd8b5f2878bffbc3e32dfe5ed2df
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.ppc.rpm	SHA-256: 098160236ad2c5dbeb9f8301a9f1c0db7a99aebfb4f7ca12502762491d8a7df9
java-1.7.0-ibm-jdbc-1.7.0.9.50-1jpp.1.el5_11.ppc64.rpm	SHA-256: a7ce7270a80379cf0b60ebdce9c0ef292155d2979b9d4c040dca42c6f40a4cd9
java-1.7.0-ibm-plugin-1.7.0.9.50-1jpp.1.el5_11.ppc.rpm	SHA-256: 41f7eba3cfaf61c6b0033d449b7dabe7325233042949363c795a37fb45032760
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.ppc.rpm	SHA-256: efebb934f144461ccc46fa98f4397b858b5ee45c2e00573dde087952696cc005
java-1.7.0-ibm-src-1.7.0.9.50-1jpp.1.el5_11.ppc64.rpm	SHA-256: cdc3d44565264fc31e6b34f44540e636a0a30f1f366100fae847c8e49d8cdb78