-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3707-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
November 07, 2016                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-7
CVE ID         : CVE-2016-5542 CVE-2016-5554 CVE-2016-5573 CVE-2016-5582
                 CVE-2016-5597

Several vulnerabilities have been discovered in OpenJDK, an
implementation of the Oracle Java platform, resulting in breakouts
of the Java sandbox or denial of service.

For the stable distribution (jessie), this problem has been fixed in
version 7u111-2.6.7-2~deb8u1.

We recommend that you upgrade your openjdk-7 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=gGs3
-----END PGP SIGNATURE-----