{"id":"RHSA-2017:3046","summary":"Red Hat Security Advisory: java-1.7.0-oracle security update","modified":"2026-03-25T10:01:34Z","published":"2024-09-13T14:42:24Z","upstream":["CVE-2016-10165","CVE-2016-9840","CVE-2016-9841","CVE-2016-9842","CVE-2016-9843","CVE-2017-10274","CVE-2017-10281","CVE-2017-10285","CVE-2017-10293","CVE-2017-10295","CVE-2017-10345","CVE-2017-10346","CVE-2017-10347","CVE-2017-10348","CVE-2017-10349","CVE-2017-10350","CVE-2017-10355","CVE-2017-10356","CVE-2017-10357","CVE-2017-10388"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:3046"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html#AppendixJAVA"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/java/javaseproducts/documentation/javase7supportreleasenotes-1601161.html#R170_161"},{"type":"ARTICLE","url":"http://www.oracle.com/technetwork/java/javase/eol-135779.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1367357"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1402345"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1402346"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1402348"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1402351"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1501868"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1501873"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502038"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502053"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502611"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502614"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502629"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502632"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502640"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502649"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502687"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502858"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1502869"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503169"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503320"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3046.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-9840"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-9840"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-9840"},{"type":"ARTICLE","url":"https://docs.google.com/document/d/10i1KZS5so8xDqH2rplRa2xet0tyTvvJlLbQQmZIUIKE/edit#heading=h.t13tvnx4loq7"},{"type":"ARTICLE","url":"https://wiki.mozilla.org/images/0/09/Zlib-report.pdf"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-9841"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-9841"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-9841"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-9842"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-9842"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-9842"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-9843"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-9843"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-9843"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-10165"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-10165"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-10165"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10274"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10274"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10274"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10281"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10281"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10281"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10285"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10285"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10285"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10293"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10293"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10293"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10295"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10295"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10295"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10345"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10345"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10345"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10346"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10346"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10346"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10347"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10347"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10347"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10348"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10348"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10348"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10349"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10349"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10349"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10350"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10350"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10350"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10355"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10355"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10355"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10356"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10356"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10356"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10357"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10357"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10357"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-10388"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-10388"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-10388"}],"affected":[{"package":{"name":"java-1.7.0-oracle","ecosystem":"Red Hat:rhel_extras_oracle_java:6","purl":"pkg:rpm/redhat/java-1.7.0-oracle"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-devel","ecosystem":"Red Hat:rhel_extras_oracle_java:6","purl":"pkg:rpm/redhat/java-1.7.0-oracle-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-javafx","ecosystem":"Red Hat:rhel_extras_oracle_java:6","purl":"pkg:rpm/redhat/java-1.7.0-oracle-javafx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-jdbc","ecosystem":"Red Hat:rhel_extras_oracle_java:6","purl":"pkg:rpm/redhat/java-1.7.0-oracle-jdbc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-plugin","ecosystem":"Red Hat:rhel_extras_oracle_java:6","purl":"pkg:rpm/redhat/java-1.7.0-oracle-plugin"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-src","ecosystem":"Red Hat:rhel_extras_oracle_java:6","purl":"pkg:rpm/redhat/java-1.7.0-oracle-src"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle","ecosystem":"Red Hat:rhel_extras_oracle_java:7","purl":"pkg:rpm/redhat/java-1.7.0-oracle"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-devel","ecosystem":"Red Hat:rhel_extras_oracle_java:7","purl":"pkg:rpm/redhat/java-1.7.0-oracle-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-javafx","ecosystem":"Red Hat:rhel_extras_oracle_java:7","purl":"pkg:rpm/redhat/java-1.7.0-oracle-javafx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-jdbc","ecosystem":"Red Hat:rhel_extras_oracle_java:7","purl":"pkg:rpm/redhat/java-1.7.0-oracle-jdbc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-plugin","ecosystem":"Red Hat:rhel_extras_oracle_java:7","purl":"pkg:rpm/redhat/java-1.7.0-oracle-plugin"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}},{"package":{"name":"java-1.7.0-oracle-src","ecosystem":"Red Hat:rhel_extras_oracle_java:7","purl":"pkg:rpm/redhat/java-1.7.0-oracle-src"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.7.0.161-1jpp.4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3046.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}