Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

VMware Product Updates Address Critical Information Disclosure Issue In JRE

Published: 2015-04-04
Last Updated: 2015-04-04 08:51:05 UTC
by Didier Stevens (Version: 1)
2 comment(s)

VMSA-2015-0003

Oracle JRE is updated in VMware products to address a critical security issue that existed in earlier releases of Oracle JRE.

VMware products running JRE 1.7 Update 75 or newer and JRE 1.6 Update 91 or newer are not vulnerable to CVE-2014-6593, as documented in the Oracle Java SE Critical Patch Update Advisory of January 2015.

Keywords: update vmware
2 comment(s)
Diary Archives