Advisory Published

RHSA-2010:0338: Critical: java-1.5.0-sun security update

First published: Wed Mar 31 2010(Updated: )

The Sun 1.5.0 Java release includes the Sun Java 5 Runtime Environment and<br>the Sun Java 5 Software Development Kit.<br>The java-1.5.0-sun packages are vulnerable to a number of security flaws<br>and should no longer be used. (CVE-2009-3555, CVE-2010-0082, CVE-2010-0084,<br>CVE-2010-0085, CVE-2010-0087, CVE-2010-0088, CVE-2010-0089, CVE-2010-0091,<br>CVE-2010-0092, CVE-2010-0093, CVE-2010-0094, CVE-2010-0095, CVE-2010-0837,<br>CVE-2010-0838, CVE-2010-0839, CVE-2010-0840, CVE-2010-0841, CVE-2010-0842,<br>CVE-2010-0843, CVE-2010-0844, CVE-2010-0845, CVE-2010-0846, CVE-2010-0847,<br>CVE-2010-0848, CVE-2010-0849)<br>The Sun Java SE Release family 5.0 reached its End of Service Life on<br>November 3, 2009. The RHSA-2009:1571 update provided the final publicly<br>available update of version 5.0 (Update 22). Users interested in continuing<br>to receive critical fixes for Sun Java SE 5.0 should contact Oracle:<br><a href="http://www.sun.com/software/javaforbusiness/index.jsp" target="_blank">http://www.sun.com/software/javaforbusiness/index.jsp</a> An alternative to Sun Java SE 5.0 is the Java 2 Technology Edition of the<br>IBM Developer Kit for Linux, which is available from the Extras and<br>Supplementary channels on the Red Hat Network.<br>Applications capable of using the Java 6 runtime can be migrated to Java 6<br>on: OpenJDK (java-1.6.0-openjdk), an open source JDK included in Red Hat<br>Enterprise Linux 5, since 5.3; the IBM JDK, java-1.6.0-ibm; or the Sun JDK,<br>java-1.6.0-sun.<br>This update removes the java-1.5.0-sun packages as they have reached their<br>End of Service Life.<br>

Affected SoftwareAffected VersionHow to fix
Sun Java SE
Sun Java Runtime Environment 5
Oracle Java Software Development Kit

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What are the vulnerabilities associated with RHSA-2010:0338?

    RHSA-2010:0338 is associated with multiple vulnerabilities including CVE-2009-3555, CVE-2010-0082, and CVE-2010-0084.

  • What is the severity level of RHSA-2010:0338?

    The severity level of RHSA-2010:0338 is classified as critical due to the potential impact of the vulnerabilities.

  • How can I mitigate the risks of RHSA-2010:0338?

    To mitigate the risks of RHSA-2010:0338, it is recommended to upgrade to a newer, secure version of the Sun Java 5 Runtime Environment.

  • Does RHSA-2010:0338 affect my current software setup?

    RHSA-2010:0338 affects systems using the java-1.5.0-sun packages, which should no longer be used.

  • Is there a recommended action for RHSA-2010:0338?

    The recommended action for RHSA-2010:0338 is to immediately remove any vulnerable packages and replace them with supported alternatives.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203