Overview

Oracle Java January 2016 Security Fixes

  • Posted February 09, 2016

  • Assessed Risk Level: Medium

On January 19, 2016 Oracle announced several security vulnerabilities in Java.

Puppet Enterprise 3.x and 2015.x ship with vulnerable versions of Java.

Puppet Enterprise 3.8.4 and 2015.3.2 include updates to address the Java security announcement.

For more information about the vulnerability, please refer to the Oracle security announcement.

Status:

Affected Software Versions:

  • Puppet Enterprise 3.x prior to 3.8.4
  • Puppet Enterprise 2015.x prior to 2015.3.2

Resolved in:

  • Puppet Enterprise 3.8.4
  • Puppet Enterprise 2015.3.2