-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3147-1 security@debian.org http://www.debian.org/security/ Moritz Muehlenhoff January 30, 2015 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : openjdk-6 CVE ID : CVE-2014-3566 CVE-2014-6585 CVE-2014-6587 CVE-2014-6591 CVE-2014-6593 CVE-2014-6601 CVE-2015-0383 CVE-2015-0395 CVE-2015-0407 CVE-2015-0408 CVE-2015-0410 CVE-2015-0412 Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, information disclosure or denial of service. For the stable distribution (wheezy), these problems have been fixed in version 6b34-1.13.6-1~deb7u1. We recommend that you upgrade your openjdk-6 packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJUy6moAAoJEBDCk7bDfE42OqQQALSvV7YhTEEGRyzsLlpy3gJz iHMfH1dDAOcp8pmhfKwGX+lBWTeQ1gNgXBKdl8igU1dNHI3xAsaaM+R6YkimWsyk p9R00q9D2IuW2N/1ctGxVMv0K3j1QCUjIbNHBnEq/7gPgUgve7nlAS6zGL8Ht0Vi X/kRQhZKgWnQLgEG1KXi02Don+SLeTFBjLc4tL7yJHrZhrvgJoxuU7m2BiCmqkG9 l/ACQ4FXd2Sv1sHjgGOsew7uBuZwjTwLZ7czO+s5P3IfTOXxipsXdxLk1cEEMpgT IdpT1eAROvrXRqjytMWDzPIufalb9yiDcXSdTupbcH3LizWZcdU0megOdum4xkVX +OgdOZUBpTncYGQNANoJhhfoKWlUEvvhAmHFNWseD2JY8RSTbLB9V/LXUMaU4nGt 0qtMO4dXC2x5958D23UJ10x7Mwr1yz1BnSAH3VillM/G7uRNlewbUBc7FnKNVCmU 1DwVqSoV+03u+0GWrKCFqU54i6mBuUHa1XqxxILiA+JTjaUZQL40zZ6VsyEjEV7T lvVvcE+4BhswBXkcU70bfg3Yy5aIbshlDEGDKvbuB4UJQQA+y4HizboHtT3yqmQu /J3EZHgZoXnrYUJz/+sGsphR4HAZD3jP1AV+3L4a0BU3m0PVeIJAhJ6PraBY139x Zq2HfmclZkLyqvLf5YjV =t9cD -----END PGP SIGNATURE-----