漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
A vulnerability was discovered in the OpenJDK JRE related to data integrity.
Multiple vulnerabilities were discovered in the OpenJDK JRE related to availability.
A vulnerability was discovered in the OpenJDK JRE related to information disclosure.
A vulnerability was discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability.
漏洞危害
An attacker could exploit this to expose sensitive data over the network or possibly execute arbitrary code. (CVE-2016-3458)
An attacker could exploit these to cause a denial of service. (CVE-2016-3500, CVE-2016-3508)
An attacker could exploit this to expose sensitive data over the network. (CVE-2016-3550)
An attacker could exploit this to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code. (CVE-2016-3606)
解决方案
Refer to Ubuntu advisory USN-3077-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3077-1: 12.04 (Precise) on src (openjdk-6-jre)
USN-3077-1: 12.04 (Precise) on src (openjdk-6-jre-zero)
USN-3077-1: 12.04 (Precise) on src (icedtea-6-jre-cacao)
USN-3077-1: 12.04 (Precise) on src (icedtea-6-jre-jamvm)
0day
文章评论