Synopsis

Critical: java-1.7.0-ibm security update

Type/Severity

Security Advisory: Critical

Topic

An update for java-1.7.0-ibm is now available for Red Hat Enterprise Linux 5
Supplementary.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

Description

IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM Java
Software Development Kit.

This update upgrades IBM Java SE 7 to version 7 SR9-FP60.

Security Fix(es):

• This update fixes multiple vulnerabilities in the IBM Java Runtime Environment
  and the IBM Java Software Development Kit. Further information about these flaws
  can be found on the IBM Java Security alerts page, listed in the References
  section. (CVE-2016-5542, CVE-2016-5554, CVE-2016-5556, CVE-2016-5573,
  CVE-2016-5597)
  

Solution

For details on how to apply this update, which includes the changes described in
this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of IBM Java must be restarted for this update to take
effect.

Affected Products

• Red Hat Enterprise Linux Server 5 x86_64
• Red Hat Enterprise Linux Server 5 i386
• Red Hat Enterprise Linux Workstation 5 x86_64
• Red Hat Enterprise Linux Workstation 5 i386
• Red Hat Enterprise Linux Desktop 5 x86_64
• Red Hat Enterprise Linux Desktop 5 i386
• Red Hat Enterprise Linux for IBM z Systems 5 s390x
• Red Hat Enterprise Linux for Power, big endian 5 ppc

Fixes

• BZ - 1385544 - CVE-2016-5573 OpenJDK: insufficient checks of JDWP packets (Hotspot, 8159519)
• BZ - 1385714 - CVE-2016-5554 OpenJDK: insufficient classloader consistency checks in ClassLoaderWithRepository (JMX, 8157739)
• BZ - 1385723 - CVE-2016-5542 OpenJDK: missing algorithm restrictions for jar verification (Libraries, 8155973)
• BZ - 1386103 - CVE-2016-5597 OpenJDK: exposure of server authentication credentials to proxy (Networking, 8160838)
• BZ - 1386408 - CVE-2016-5556 Oracle JDK: unspecified vulnerability fixed in 6u131, 7u121, and 8u111 (2D)

CVEs

• CVE-2016-5542
• CVE-2016-5554
• CVE-2016-5597
• CVE-2016-5573
• CVE-2016-5556

References

• https://access.redhat.com/security/updates/classification/#critical
• https://www.ibm.com/developerworks/java/jdk/alerts/

Red Hat Enterprise Linux Server 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: ad0dfe6bfb148476e0331c6db3c6cf5305f6ec1b3d003b21fe671110bd865877
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 6c3e25299c4e821ec252651ee8c8132fe585d82c5aecc98f2bb9a1445e307f79
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 69b0e8fd97e9db1e486631f44168d77973d80603fecac6e459cdbba621b6f9ad
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 11db2d2a94cff47cbad1ff3c437f64a9135c2d11367e0dd69fe7fe7a6fb81826
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 1ff9247d06c6fed5a987b56556277b4d363f74c6c0d1845ce05481366a36a752
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: eea18c9b26733c52b321f909c80f5bf6f17871bffb6058ac345acf0f4cfbd82b
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 92d3e7c7f65c14066c77949a8f867027cbd05db61b4c064526b4dc229e25ad32
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 232953b23aa2174e6cf4580341566c35e7b37a910bdb6a014646699d1f46e115
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 60467e159938f37d56b57735e8002a7bb27aecd15fb70a58fb48dfc823e2c814
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 469a330b4530eb8b9328f998261cd1627095dcac9b163b7c61243ab0619d34ab
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 62b117e5f4a960b604fde828a9592148322cb5dd126a3e5776e5417c1758d4e1
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 73cf9ba13134b38bf287939c09961f3c6d96bf385cc5918c833e7adea5c28d10
i386
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: ad0dfe6bfb148476e0331c6db3c6cf5305f6ec1b3d003b21fe671110bd865877
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 69b0e8fd97e9db1e486631f44168d77973d80603fecac6e459cdbba621b6f9ad
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 1ff9247d06c6fed5a987b56556277b4d363f74c6c0d1845ce05481366a36a752
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 92d3e7c7f65c14066c77949a8f867027cbd05db61b4c064526b4dc229e25ad32
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 60467e159938f37d56b57735e8002a7bb27aecd15fb70a58fb48dfc823e2c814
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 62b117e5f4a960b604fde828a9592148322cb5dd126a3e5776e5417c1758d4e1

Red Hat Enterprise Linux Workstation 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: ad0dfe6bfb148476e0331c6db3c6cf5305f6ec1b3d003b21fe671110bd865877
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 6c3e25299c4e821ec252651ee8c8132fe585d82c5aecc98f2bb9a1445e307f79
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 69b0e8fd97e9db1e486631f44168d77973d80603fecac6e459cdbba621b6f9ad
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 11db2d2a94cff47cbad1ff3c437f64a9135c2d11367e0dd69fe7fe7a6fb81826
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 1ff9247d06c6fed5a987b56556277b4d363f74c6c0d1845ce05481366a36a752
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: eea18c9b26733c52b321f909c80f5bf6f17871bffb6058ac345acf0f4cfbd82b
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 92d3e7c7f65c14066c77949a8f867027cbd05db61b4c064526b4dc229e25ad32
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 232953b23aa2174e6cf4580341566c35e7b37a910bdb6a014646699d1f46e115
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 60467e159938f37d56b57735e8002a7bb27aecd15fb70a58fb48dfc823e2c814
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 469a330b4530eb8b9328f998261cd1627095dcac9b163b7c61243ab0619d34ab
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 62b117e5f4a960b604fde828a9592148322cb5dd126a3e5776e5417c1758d4e1
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 73cf9ba13134b38bf287939c09961f3c6d96bf385cc5918c833e7adea5c28d10
i386
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: ad0dfe6bfb148476e0331c6db3c6cf5305f6ec1b3d003b21fe671110bd865877
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 69b0e8fd97e9db1e486631f44168d77973d80603fecac6e459cdbba621b6f9ad
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 1ff9247d06c6fed5a987b56556277b4d363f74c6c0d1845ce05481366a36a752
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 92d3e7c7f65c14066c77949a8f867027cbd05db61b4c064526b4dc229e25ad32
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 60467e159938f37d56b57735e8002a7bb27aecd15fb70a58fb48dfc823e2c814
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 62b117e5f4a960b604fde828a9592148322cb5dd126a3e5776e5417c1758d4e1

Red Hat Enterprise Linux Desktop 5

SRPM
x86_64
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: ad0dfe6bfb148476e0331c6db3c6cf5305f6ec1b3d003b21fe671110bd865877
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 6c3e25299c4e821ec252651ee8c8132fe585d82c5aecc98f2bb9a1445e307f79
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 69b0e8fd97e9db1e486631f44168d77973d80603fecac6e459cdbba621b6f9ad
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 11db2d2a94cff47cbad1ff3c437f64a9135c2d11367e0dd69fe7fe7a6fb81826
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 1ff9247d06c6fed5a987b56556277b4d363f74c6c0d1845ce05481366a36a752
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: eea18c9b26733c52b321f909c80f5bf6f17871bffb6058ac345acf0f4cfbd82b
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 92d3e7c7f65c14066c77949a8f867027cbd05db61b4c064526b4dc229e25ad32
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 232953b23aa2174e6cf4580341566c35e7b37a910bdb6a014646699d1f46e115
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 60467e159938f37d56b57735e8002a7bb27aecd15fb70a58fb48dfc823e2c814
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 469a330b4530eb8b9328f998261cd1627095dcac9b163b7c61243ab0619d34ab
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 62b117e5f4a960b604fde828a9592148322cb5dd126a3e5776e5417c1758d4e1
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.x86_64.rpm	SHA-256: 73cf9ba13134b38bf287939c09961f3c6d96bf385cc5918c833e7adea5c28d10
i386
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: ad0dfe6bfb148476e0331c6db3c6cf5305f6ec1b3d003b21fe671110bd865877
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 69b0e8fd97e9db1e486631f44168d77973d80603fecac6e459cdbba621b6f9ad
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 1ff9247d06c6fed5a987b56556277b4d363f74c6c0d1845ce05481366a36a752
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 92d3e7c7f65c14066c77949a8f867027cbd05db61b4c064526b4dc229e25ad32
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 60467e159938f37d56b57735e8002a7bb27aecd15fb70a58fb48dfc823e2c814
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.i386.rpm	SHA-256: 62b117e5f4a960b604fde828a9592148322cb5dd126a3e5776e5417c1758d4e1

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
s390x
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.s390.rpm	SHA-256: 23651454101a229b209446ee7053fe6254d98bd92f3a1f9f3583c5806b8d64ea
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.s390x.rpm	SHA-256: fe6cfe971ca3fa518cc3018ab0281035fd5b47ba091babb742753b4e6c7918f3
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.s390.rpm	SHA-256: 832e112313ce56400d1d98d21db20ea10868470050febfcb53a52f1d581fa13b
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.s390x.rpm	SHA-256: ae92c9d18718c982a6884b1542ce1a840b2d4f09c0f374b5e3f14288770823b0
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.s390.rpm	SHA-256: 5f3483693a73a112166f0a8992cc11cb79782a1f435307811e80b5cbd34edff0
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.s390x.rpm	SHA-256: ffb6788d97d28bfadec198d0a5af9662c039659dd5008c7bfeaebe531a4ab48a
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.s390.rpm	SHA-256: bd2ed1a933e084c3956c12f7dbcf1882bbdb5f69f5a9aefaa27e19ef3a68f5a7
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.s390x.rpm	SHA-256: 88ae59602dc79d39b55d97378191a613c48a4710d8c38d96f9146237546cabae
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.s390.rpm	SHA-256: 803dd7f8ebfd6312a0991631729e2c0fa12d1fa9f63f961948eed1b7a0717f4b
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.s390x.rpm	SHA-256: 9482d195af98207afa6bc883fbfa1ed6b15ef8d0a5c3f22ec66af869c6182ea9

Red Hat Enterprise Linux for Power, big endian 5

SRPM
ppc
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.ppc.rpm	SHA-256: 230a554820f2b5e20b3b6290a07146202300365797f1acaad34acd9acd66397f
java-1.7.0-ibm-1.7.0.9.60-1jpp.1.el5_11.ppc64.rpm	SHA-256: 5a1bd8750eb698cf4c52b1365339bd5f1b451047a45e93f60435385107e8aa16
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.ppc.rpm	SHA-256: 0b1e795fe36c048e7312108d2e8c4036cb49d3379382987b7e9c37df7d52ff76
java-1.7.0-ibm-demo-1.7.0.9.60-1jpp.1.el5_11.ppc64.rpm	SHA-256: d3f8af46e505e9422fd28d07a2859f96acb00f1e196c4aa7ef5fecb525f48815
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.ppc.rpm	SHA-256: 14d8187b91ecc9f66983ea23a364ddac1d98b1565f67b7c4cd33ee7260e68175
java-1.7.0-ibm-devel-1.7.0.9.60-1jpp.1.el5_11.ppc64.rpm	SHA-256: 5bee7f9738c24ec31f1e1eb9f1da9f386df0288f4863e231dd2b52d0ab7713ec
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.ppc.rpm	SHA-256: 7ebf84b9c136370d6b50d9e2bfa8b1db66e2f9deb03d4a2f0837e2d3e9770b98
java-1.7.0-ibm-jdbc-1.7.0.9.60-1jpp.1.el5_11.ppc64.rpm	SHA-256: 4683980e1b658a2394b44ee4eb9fe0cbae32d27e6f3a969538569b143002b7dd
java-1.7.0-ibm-plugin-1.7.0.9.60-1jpp.1.el5_11.ppc.rpm	SHA-256: 675626ecd670e4584959983e346f294e01d14ce72d89971149882c0e1dee4595
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.ppc.rpm	SHA-256: 4fb522fa16a8506fd802709b74a16f133432ee0723c86ce6182c49772be2682c
java-1.7.0-ibm-src-1.7.0.9.60-1jpp.1.el5_11.ppc64.rpm	SHA-256: 68d439b58538d4570cf8f1733737e4841a9f4acc01a9fc6f079978374e2336dc