Oracle JDK/JRE: Multiple vulnerabilities Multiple vulnerabilities have been found in Oracle's JDK and JRE software suites, the worst of which may allow execution of arbitrary code. oracle-jdk-bin,oracle-jre-bin 2018-03-19 2018-03-19 645268 remote 1.8.0.162 1.8.0.162 1.8.0.162 1.8.0.162

Java Platform, Standard Edition (Java SE) lets you develop and deploy Java applications on desktops and servers, as well as in today’s demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today’s applications require.

Multiple vulnerabilities have been discovered in Oracle’s Java SE. Please review the referenced CVE identifiers for details.

A remote attacker could possibly execute arbitrary code with the privileges of the process, gain access to information, or cause a Denial of Service condition.

There is no known workaround at this time.

All Oracle JDK users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=dev-java/oracle-jdk-bin-1.8.0.162:1.8"

All Oracle JRE users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=dev-java/oracle-jre-bin-1.8.0.162:1.8"
CVE-2018-2579 CVE-2018-2581 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2627 CVE-2018-2629 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2638 CVE-2018-2639 CVE-2018-2641 CVE-2018-2663 chrisadr chrisadr