Details
-
Bug
-
Resolution: Fixed
-
Low
-
None
-
None
Description
Update the bundled version of java to a version >= 1.8u71 (1.8 update 71), which fixes many security issues (http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixJAVA).
Included in the security fixes is a fix for CVE-2016-0483 "An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK. A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code. An untrusted Java application or applet could use this flaw to bypass Java sandbox restrictions".
See also: https://blogs.oracle.com/security/entry/security_alert_cve_2016_0603: 8u73 or later is recommended
Attachments
Issue Links
- is cloned from
-
FE-6511 Update Java version bundled found in the installer to a version >= 1.8u71
- Closed