commit patchinfo.4574 for openSUSE:13.2:Update

Wed, 27 Jan 2016 08:19:10 -0800 

Hello community,

here is the log from the commit of package patchinfo.4574 for 
openSUSE:13.2:Update checked in at 2016-01-27 17:12:29
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:13.2:Update/patchinfo.4574 (Old)
 and      /work/SRC/openSUSE:13.2:Update/.patchinfo.4574.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "patchinfo.4574"

Changes:
--------
New Changes file:

NO CHANGES FILE!!!

New:
----
  _patchinfo

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo incident="4574">
  <issue id="962743" tracker="bnc">VUL-0: Oracle Critical Patch Update Advisory 
- January 2016 tracker bug</issue>
  <issue id="960996" tracker="bnc">VUL-0: CVE-2015-7575: SLOTH: Security Losses 
from Obsolete and Truncated Transcript Hashes</issue>
  <issue id="CVE-2015-7575" tracker="cve" />
  <issue id="CVE-2015-8126" tracker="cve" />
  <issue id="CVE-2016-0402" tracker="cve" />
  <issue id="CVE-2016-0448" tracker="cve" />
  <issue id="CVE-2016-0466" tracker="cve" />
  <issue id="CVE-2016-0483" tracker="cve" />
  <issue id="CVE-2016-0494" tracker="cve" />
  <issue id="CVE-2015-8472" tracker="cve" />
  <category>security</category>
  <rating>critical</rating>
  <packager>fstrba</packager>
  <description>java-1_8_0-openjdk was updated to version 7u95 to fix 9 security 
issues. (bsc#962743)

- CVE-2015-7575: Further reduce use of MD5 (SLOTH) (bsc#960996)
- CVE-2015-8126: Vulnerability in the AWT component related to splashscreen 
displays
- CVE-2015-8472: Vulnerability in the AWT component, addressed by same fix
- CVE-2016-0402: Vulnerability in the Networking component related to URL 
processing
- CVE-2016-0448: Vulnerability in the JMX comonent related to attribute 
processing
- CVE-2016-0466: Vulnerability in the JAXP component, related to limits
- CVE-2016-0483: Vulnerability in the AWT component related to image decoding
- CVE-2016-0494: Vulnerability in 2D component related to font actions
</description>
  <summary>Security update for java-1_8_0-openjdk</summary>
</patchinfo>

Reply via email to