What is the severity of RHSA-2020:0467?

The severity of RHSA-2020:0467 is categorized as important.

How do I fix RHSA-2020:0467?

To fix RHSA-2020:0467, you need to update your IBM Java SE version to 7R1 SR4-FP60.

Which versions of IBM Java SE are affected by RHSA-2020:0467?

IBM Java SE versions prior to 7R1 SR4-FP60 are affected by RHSA-2020:0467.

What are the security fixes included in RHSA-2020:0467?

RHSA-2020:0467 includes security fixes related to OpenJDK serialization filter changes.

Is RHSA-2020:0467 applicable to multiple Java packages?

Yes, RHSA-2020:0467 is applicable to several Java packages including ibm, demo, devel, jdbc, plugin, and src.

Vulnerability/
RHSA-2020:0467

11/2/2020

28/9/2024

RHSA-2020:0467: Important: java-1.7.1-ibm security update

First published: Tue Feb 11 2020(Updated: )

IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.<br>This update upgrades IBM Java SE 7 to version 7R1 SR4-FP60.<br>Security Fix(es):<br><li> OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422) (CVE-2020-2604)</li> <li> OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548) (CVE-2020-2593)</li> <li> OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909) (CVE-2020-2583)</li> <li> OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795) (CVE-2020-2659)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Software	Affected Version	How to fix
redhat/java	<1.7.1-ibm-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-demo-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-demo-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-devel-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-devel-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-jdbc-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-jdbc-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-plugin-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-plugin-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-src-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-src-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-demo-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-demo-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-devel-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-devel-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-jdbc-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-jdbc-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-plugin-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-plugin-1.7.1.4.60-1jpp.1.el6_10
redhat/java	<1.7.1-ibm-src-1.7.1.4.60-1jpp.1.el6_10	1.7.1-ibm-src-1.7.1.4.60-1jpp.1.el6_10

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2020:0467 (Advisory)

Frequently Asked Questions

What is the severity of RHSA-2020:0467?
The severity of RHSA-2020:0467 is categorized as important.
How do I fix RHSA-2020:0467?
To fix RHSA-2020:0467, you need to update your IBM Java SE version to 7R1 SR4-FP60.
Which versions of IBM Java SE are affected by RHSA-2020:0467?
IBM Java SE versions prior to 7R1 SR4-FP60 are affected by RHSA-2020:0467.
What are the security fixes included in RHSA-2020:0467?
RHSA-2020:0467 includes security fixes related to OpenJDK serialization filter changes.
Is RHSA-2020:0467 applicable to multiple Java packages?
Yes, RHSA-2020:0467 is applicable to several Java packages including ibm, demo, devel, jdbc, plugin, and src.

agent/type
agent/severity
agent/softwarecombine
agent/last-modified-date
agent/first-publish-date
agent/title
agent/remedy
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2020:0467
agent/software-canonical-lookup
agent/references
agent/tags
agent/event
agent/source
package-manager/redhat