https://community.hpe.com/t5/operating-system-hp-ux/ssrt3627-potential-sec-vulnerability-in-java-vm-j2se-and/m-p/3072433#M751657 A security bulletin has been issued: <BR /><BR />----------------------------------------------------------------- <BR />Source: HEWLETT-PACKARD COMPANY<BR /> SECURITY BULLETIN: HPSBUX0309-280<BR /> Originally issued: 15 Sept. 2003<BR /> SSRT3627 Potential Sec. Vulnerability in Java VM (J2SE) and<BR /> Java Secure Socket Extension (JSSE)<BR />----------------------------------------------------------------- <BR /><BR />To access the bulletin from the itrc: <BR /><BR />Select "maintenance and support" <BR />Select "search technical knowledge base" <BR />Select "HP-UX Software Security Bulletins" <BR />Select "Search by Security Bulletin Number" <BR />Enter " HPSBUX0309-280" <BR />Search <BR /><BR /> <BR />===============================================================<BR /><BR />Berlene <BR /><BR /> Tue, 16 Sep 2003 15:12:14 GMT Berlene Herren 2003-09-16T15:12:14Z https://community.hpe.com/t5/operating-system-hp-ux/ssrt3627-potential-sec-vulnerability-in-java-vm-j2se-and/m-p/3072433#M751657 A security bulletin has been issued: <BR /><BR />----------------------------------------------------------------- <BR />Source: HEWLETT-PACKARD COMPANY<BR /> SECURITY BULLETIN: HPSBUX0309-280<BR /> Originally issued: 15 Sept. 2003<BR /> SSRT3627 Potential Sec. Vulnerability in Java VM (J2SE) and<BR /> Java Secure Socket Extension (JSSE)<BR />----------------------------------------------------------------- <BR /><BR />To access the bulletin from the itrc: <BR /><BR />Select "maintenance and support" <BR />Select "search technical knowledge base" <BR />Select "HP-UX Software Security Bulletins" <BR />Select "Search by Security Bulletin Number" <BR />Enter " HPSBUX0309-280" <BR />Search <BR /><BR /> <BR />===============================================================<BR /><BR />Berlene <BR /><BR /> Tue, 16 Sep 2003 15:12:14 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssrt3627-potential-sec-vulnerability-in-java-vm-j2se-and/m-p/3072433#M751657 Berlene Herren 2003-09-16T15:12:14Z https://community.hpe.com/t5/operating-system-hp-ux/ssrt3627-potential-sec-vulnerability-in-java-vm-j2se-and/m-p/3072434#M751658 SOLUTION: Update to version of Java with the security fixes.<BR /> Note: Java 1.4.0 has been obsoleted by Sun and HP;<BR /> no fix will be provided.<BR /><BR /> For 1.4.1, manually update to version of Java with the<BR /> security fixes: Java 1.4.1.04, or later.<BR /><BR /> For JSSE 1.0.3_01, you will need to update 1.0.3_02.<BR /><BR />- --&gt;&gt; For SCM 3.0, manually update to a version with security<BR />- --&gt;&gt; fixes: B.03.00.04, or later.<BR /><BR />**REVISED 01**<BR />MANUAL ACTIONS: Yes - update Java to: 1.4.1.04, or later.<BR /> Yes - update SCM 3.0 to: B.03.00.04, or later.<BR /><BR /> For Java versions (1.2.X, 1.3.X) using JSSE, update<BR /> to 1.0.3_02 from the following URL:<BR /><BR /> <A href="http://java.sun.com/products/jsse/index-103.html" target="_blank">http://java.sun.com/products/jsse/index-103.html</A><BR /><BR />**REVISED 01**<BR />AVAILABILITY: Updated releases are now available at:<BR /> <WWW.HP.COM> for Java and<BR /> <SOFTWARE.HP.COM> for Servicecontrol Manager 3.0<BR /><BR /></SOFTWARE.HP.COM></WWW.HP.COM> Tue, 21 Oct 2003 15:57:51 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssrt3627-potential-sec-vulnerability-in-java-vm-j2se-and/m-p/3072434#M751658 Berlene Herren 2003-10-21T15:57:51Z