AnNyung Official Homepage Home > Update [ 3 ]  

HOME
What is AnNyung
Documents
Packages System
White Paper
Download
Update
  . 3.x [RSS]
  . 2.x [RSS]
  . 1.3 [RSS]
  . 1.2 [RSS]
  . 1.1 [RSS]
  . 1.0 [RSS]
FAQ
Hardware
RoadMap
Gallery

  Go oops.org
  AnNyung banner 88x31

  AnNyung 1 banner 80x15
  AnNyung 2 banner 80x15
  AnNyung 3 banner 80x15
  AnNyung banner 80x15
  AnNyung banner 80x15



java-1.8.0-oracle 보안 업데이트

 : 2017.10.21
     : java-1.8.0-oracle-10:1.8.0.151-1.an3
     : AnNyung Packaging Team

     :

    The Oracle JAVA audio, vidio and javafx runtime environment

변경사항

    - update 1.8.0u151
      . http://www.oracle.com/technetwork/java/javase/8u151-relnotes-3850493.html
    
    - security issues
      . http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
      . CVE-2017-10346 Hotspot component. Enabled remote attack without auth
      . CVE-2017-10285 RMI component. Enabled remote attack without auth
      . CVE-2017-10388 Libraries component(Kerberos). Enabled remote attack without auth
      . CVE-2017-10309 Deployment component. Enabled remote attack without auth
      . CVE-2017-10274 Smart Card IO component. Enabled remote attack without auth
      . CVE-2017-10356 Security component.
      . CVE-2017-10293 Javadoc component(HTTP). Enabled remote attack without auth
      . CVE-2017-10350 JAX-WS component. Enabled remote attack without auth
      . CVE-2017-10349 JAXP component. Enabled remote attack without auth
      . CVE-2017-10348 Libraries component. Enabled remote attack without auth
      . CVE-2017-10357 Serialization component. Enabled remote attack without auth
      . CVE-2016-9841 Util (zlib) component. Enabled remote attack without auth
      . CVE-2016-10165 2D (Little CMS 2) component. Enabled remote attack without auth
      . CVE-2017-10355 Networking component. Enabled remote attack without auth
      . CVE-2017-10281 Serialization component. Enabled remote attack without auth
      . CVE-2017-10347 Serialization component. Enabled remote attack without auth
      . CVE-2017-10295 Networking component(HTTP). Enabled remote attack without auth
      . CVE-2017-10345 Serialization component. Enabled remote attack without auth

주의사항

    Oracle JDK는 재배포가 허용되지 않기 때문에 binary package를 제공하지
    않습니다.
    
    안녕 리눅스 3에서 Oracle JDK를 사용하기 위해서는 다음의 문서를 참고 하여
    안녕 3 에서 제공하는 java-1.8.0-oracle source rpm을 이용하여 rebuild 하여
    사용 하십시오.
    
    https://joungkyun.gitbooks.io/annyung-3-user-guide/content/chapter4.html
    문서의 5. Oracle JDK 문서를 참고 하십시오.




    SRPMS:
        . java-1.8.0-oracle-1.8.0.151-1.an3.src.rpm

    x86_64:
        . java-1.8.0-oracle-1.8.0.151-1.an3.x86_64.rpm
        . java-1.8.0-oracle-devel-1.8.0.151-1.an3.x86_64.rpm
        . java-1.8.0-oracle-devel-gui-1.8.0.151-1.an3.x86_64.rpm
        . java-1.8.0-oracle-headless-1.8.0.151-1.an3.x86_64.rpm
        . java-1.8.0-oracle-src-1.8.0.151-1.an3.x86_64.rpm



    



 Home > Update [ 3 ]

Copyright 2017 OOPS Development Organization 
LAST MODIFIED: 2016/12/13