Red Hat Errata System5.32012-06-13T16:02:07RHSA-2012:0734: java-1.6.0-sun security update (Critical)Supplementary for Red Hat Enterprise Linux 6The Sun 1.6.0 Java release includes the Sun Java 6 Runtime Environment and
the Sun Java 6 Software Development Kit.
This update fixes several vulnerabilities in the Sun Java 6 Runtime
Environment and the Sun Java 6 Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch page, listed in the References section. (CVE-2012-0551,
CVE-2012-1711, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1718,
CVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1723, CVE-2012-1724,
CVE-2012-1725)
All users of java-1.6.0-sun are advised to upgrade to these updated
packages, which provide JDK and JRE 6 Update 33 and resolve these issues.
All running instances of Sun Java must be restarted for the update to take
effect.CriticalCopyright 2012 Red Hat, Inc.CVE-2012-0551CVE-2012-1711CVE-2012-1713CVE-2012-1716CVE-2012-1717CVE-2012-1718CVE-2012-1719CVE-2012-1721CVE-2012-1722CVE-2012-1723CVE-2012-1724CVE-2012-1725CVE-2012-1711 OpenJDK: improper protection of CORBA data models (CORBA, 7079902)CVE-2012-1717 OpenJDK: insecure temporary file permissions (JRE, 7143606)CVE-2012-1716 OpenJDK: SynthLookAndFeel application context bypass (Swing, 7143614)CVE-2012-1713 OpenJDK: fontmanager layout lookup code memory corruption (2D, 7143617)CVE-2012-1719 OpenJDK: mutable repository identifiers in generated stub code (CORBA, 7143851)CVE-2012-1718 OpenJDK: CRL and certificate extensions handling improvements (Security, 7143872)CVE-2012-1723 OpenJDK: insufficient field accessibility checks (HotSpot, 7152811)CVE-2012-1724 OpenJDK: XML parsing infinite loop (JAXP, 7157609)CVE-2012-1725 OpenJDK: insufficient invokespecial <init> verification (HotSpot, 7160757)CVE-2012-1721 Oracle JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)CVE-2012-1722 Oracle JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)CVE-2012-0551 Oracle JDK: unspecified vulnerability fixed in 6u33 and 7u5 (Deployment)cpe:/a:redhat:rhel_extrasredhat-release-serverjava-1.6.0-sun-demoredhat-release-workstationredhat-release-computenoderedhat-release-clientjava-1.6.0-sun-jdbcjava-1.6.0-sun-srcjava-1.6.0-sunjava-1.6.0-sun-pluginjava-1.6.0-sun-devel199e2f91fd431d515326810137017186^6[^[:digit:]]1:1.6.0.33-1jpp.1.el6_2