1. Home
  2. Security Advisories
  3. Red Hat
  4. RHSA-2015:1544

[RHSA-2015:1544] java-1.5.0-ibm security update

Severity Important
Affected Packages 21
CVEs 15
Info Packages References Vulnerabilities

IBM J2SE version 5.0 includes the IBM Java Runtime Environment and the IBM
Java Software Development Kit.

This update fixes several vulnerabilities in the IBM Java Runtime
Environment and the IBM Java Software Development Kit. Further information
about these flaws can be found on the IBM Java Security alerts page, listed
in the References section. (CVE-2015-1931, CVE-2015-2590, CVE-2015-2601,
CVE-2015-2621, CVE-2015-2632, CVE-2015-2637, CVE-2015-2638, CVE-2015-2664,
CVE-2015-4000, CVE-2015-4731, CVE-2015-4732, CVE-2015-4733, CVE-2015-4748,
CVE-2015-4749, CVE-2015-4760)

Note: This update forces the TLS/SSL client implementation in IBM JDK to
reject DH key sizes below 768 bits to address the CVE-2015-4000 issue.
Refer to Red Hat Bugzilla bug 1223211, linked to in the References section,
for additional details about this change.

IBM Java SDK and JRE 5.0 will not receive software updates after September
2015. This date is referred to as the End of Service (EOS) date. Customers
are advised to migrate to current versions of IBM Java at this time. IBM
Java SDK and JRE versions 6 and 7 are available via the Red Hat Enterprise
Linux 5 and 6 Supplementary content sets and will continue to receive
updates based on IBM's lifecycle policy, linked to in the References
section.

Customers can also consider OpenJDK, an open source implementation of
the Java SE specification. OpenJDK is available by default on supported
hardware architectures.

All users of java-1.5.0-ibm are advised to upgrade to these updated
packages, containing the IBM J2SE 5.0 SR16-FP13 release. All running
instances of IBM Java must be restarted for this update to take effect.

Package Affected Version
pkg:rpm/redhat/java-1.5.0-ibm?arch=x86_64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm?arch=s390x&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm?arch=ppc64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm?arch=i686&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-src?arch=x86_64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-src?arch=s390x&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-src?arch=ppc64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-src?arch=i686&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-plugin?arch=i686&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-jdbc?arch=i686&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-javacomm?arch=x86_64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-javacomm?arch=ppc64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-javacomm?arch=i686&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=x86_64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=s390x&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=ppc64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=i686&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=x86_64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=s390x&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=ppc64&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=i686&distro=redhat-6.7 < 1.5.0.16.13-1jpp.3.el6_7
ID
RHSA-2015:1544
Severity
important
URL
https://access.redhat.com/errata/RHSA-2015:1544
Published
2015-08-04T00:00:00
(9 years ago)
Modified
2015-08-04T00:00:00
(9 years ago)
Rights
Copyright 2015 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 1223211 https://bugzilla.redhat.com/1223211
Bugzilla 1242019 https://bugzilla.redhat.com/1242019
Bugzilla 1242234 https://bugzilla.redhat.com/1242234
Bugzilla 1242240 https://bugzilla.redhat.com/1242240
Bugzilla 1242275 https://bugzilla.redhat.com/1242275
Bugzilla 1242281 https://bugzilla.redhat.com/1242281
Bugzilla 1242372 https://bugzilla.redhat.com/1242372
Bugzilla 1242379 https://bugzilla.redhat.com/1242379
Bugzilla 1242394 https://bugzilla.redhat.com/1242394
Bugzilla 1242447 https://bugzilla.redhat.com/1242447
Bugzilla 1243139 https://bugzilla.redhat.com/1243139
Bugzilla 1243283 https://bugzilla.redhat.com/1243283
Bugzilla 1243287 https://bugzilla.redhat.com/1243287
Bugzilla 1243300 https://bugzilla.redhat.com/1243300
Bugzilla 1244828 https://bugzilla.redhat.com/1244828
RHSA RHSA-2015:1544 https://access.redhat.com/errata/RHSA-2015:1544
CVE CVE-2015-1931 https://access.redhat.com/security/cve/CVE-2015-1931
CVE CVE-2015-2590 https://access.redhat.com/security/cve/CVE-2015-2590
CVE CVE-2015-2601 https://access.redhat.com/security/cve/CVE-2015-2601
CVE CVE-2015-2621 https://access.redhat.com/security/cve/CVE-2015-2621
CVE CVE-2015-2632 https://access.redhat.com/security/cve/CVE-2015-2632
CVE CVE-2015-2637 https://access.redhat.com/security/cve/CVE-2015-2637
CVE CVE-2015-2638 https://access.redhat.com/security/cve/CVE-2015-2638
CVE CVE-2015-2664 https://access.redhat.com/security/cve/CVE-2015-2664
CVE CVE-2015-4000 https://access.redhat.com/security/cve/CVE-2015-4000
CVE CVE-2015-4731 https://access.redhat.com/security/cve/CVE-2015-4731
CVE CVE-2015-4732 https://access.redhat.com/security/cve/CVE-2015-4732
CVE CVE-2015-4733 https://access.redhat.com/security/cve/CVE-2015-4733
CVE CVE-2015-4748 https://access.redhat.com/security/cve/CVE-2015-4748
CVE CVE-2015-4749 https://access.redhat.com/security/cve/CVE-2015-4749
CVE CVE-2015-4760 https://access.redhat.com/security/cve/CVE-2015-4760
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/redhat/java-1.5.0-ibm?arch=x86_64&distro=redhat-6.7 redhat java-1.5.0-ibm < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 x86_64
Affected pkg:rpm/redhat/java-1.5.0-ibm?arch=s390x&distro=redhat-6.7 redhat java-1.5.0-ibm < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 s390x
Affected pkg:rpm/redhat/java-1.5.0-ibm?arch=ppc64&distro=redhat-6.7 redhat java-1.5.0-ibm < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 ppc64
Affected pkg:rpm/redhat/java-1.5.0-ibm?arch=i686&distro=redhat-6.7 redhat java-1.5.0-ibm < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 i686
Affected pkg:rpm/redhat/java-1.5.0-ibm-src?arch=x86_64&distro=redhat-6.7 redhat java-1.5.0-ibm-src < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 x86_64
Affected pkg:rpm/redhat/java-1.5.0-ibm-src?arch=s390x&distro=redhat-6.7 redhat java-1.5.0-ibm-src < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 s390x
Affected pkg:rpm/redhat/java-1.5.0-ibm-src?arch=ppc64&distro=redhat-6.7 redhat java-1.5.0-ibm-src < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 ppc64
Affected pkg:rpm/redhat/java-1.5.0-ibm-src?arch=i686&distro=redhat-6.7 redhat java-1.5.0-ibm-src < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 i686
Affected pkg:rpm/redhat/java-1.5.0-ibm-plugin?arch=i686&distro=redhat-6.7 redhat java-1.5.0-ibm-plugin < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 i686
Affected pkg:rpm/redhat/java-1.5.0-ibm-jdbc?arch=i686&distro=redhat-6.7 redhat java-1.5.0-ibm-jdbc < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 i686
Affected pkg:rpm/redhat/java-1.5.0-ibm-javacomm?arch=x86_64&distro=redhat-6.7 redhat java-1.5.0-ibm-javacomm < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 x86_64
Affected pkg:rpm/redhat/java-1.5.0-ibm-javacomm?arch=ppc64&distro=redhat-6.7 redhat java-1.5.0-ibm-javacomm < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 ppc64
Affected pkg:rpm/redhat/java-1.5.0-ibm-javacomm?arch=i686&distro=redhat-6.7 redhat java-1.5.0-ibm-javacomm < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 i686
Affected pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=x86_64&distro=redhat-6.7 redhat java-1.5.0-ibm-devel < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 x86_64
Affected pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=s390x&distro=redhat-6.7 redhat java-1.5.0-ibm-devel < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 s390x
Affected pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=ppc64&distro=redhat-6.7 redhat java-1.5.0-ibm-devel < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 ppc64
Affected pkg:rpm/redhat/java-1.5.0-ibm-devel?arch=i686&distro=redhat-6.7 redhat java-1.5.0-ibm-devel < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 i686
Affected pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=x86_64&distro=redhat-6.7 redhat java-1.5.0-ibm-demo < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 x86_64
Affected pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=s390x&distro=redhat-6.7 redhat java-1.5.0-ibm-demo < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 s390x
Affected pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=ppc64&distro=redhat-6.7 redhat java-1.5.0-ibm-demo < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 ppc64
Affected pkg:rpm/redhat/java-1.5.0-ibm-demo?arch=i686&distro=redhat-6.7 redhat java-1.5.0-ibm-demo < 1.5.0.16.13-1jpp.3.el6_7 redhat-6.7 i686
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date