OVAL Reference oval:org.opensuse.security:def:50789

Oval Definition:

oval:org.opensuse.security:def:50789

Revision Date:	2020-12-01	Version:	1
Title:	Security update for java-11-openjdk (Important)
Description:	This update for java-11-openjdk fixes the following issues: - Update to upstream tag jdk-11.0.8+10 (July 2020 CPU, bsc#1174157) * Security fixes: + JDK-8230613: Better ASCII conversions + JDK-8231800: Better listing of arrays + JDK-8232014: Expand DTD support + JDK-8233234: Better Zip Naming + JDK-8233239, CVE-2020-14562: Enhance TIFF support + JDK-8233255: Better Swing Buttons + JDK-8234032: Improve basic calendar services + JDK-8234042: Better factory production of certificates + JDK-8234418: Better parsing with CertificateFactory + JDK-8234836: Improve serialization handling + JDK-8236191: Enhance OID processing + JDK-8236867, CVE-2020-14573: Enhance Graal interface handling + JDK-8237117, CVE-2020-14556: Better ForkJoinPool behavior + JDK-8237592, CVE-2020-14577: Enhance certificate verification + JDK-8238002, CVE-2020-14581: Better matrix operations + JDK-8238013: Enhance String writing + JDK-8238804: Enhance key handling process + JDK-8238842: AIOOBE in GIFImageReader.initializeStringTable + JDK-8238843: Enhanced font handing + JDK-8238920, CVE-2020-14583: Better Buffer support + JDK-8238925: Enhance WAV file playback + JDK-8240119, CVE-2020-14593: Less Affine Transformations + JDK-8240482: Improved WAV file playback + JDK-8241379: Update JCEKS support + JDK-8241522: Manifest improved jar headers redux + JDK-8242136, CVE-2020-14621: Better XML namespace handling * Other changes: + JDK-6933331: (d3d/ogl) java.lang.IllegalStateException: Buffers have not been created + JDK-7124307: JSpinner and changing value by mouse + JDK-8022574: remove HaltNode code after uncommon trap calls + JDK-8039082: [TEST_BUG] Test java/awt/dnd/BadSerializationTest/BadSerializationTest.java fails + JDK-8040630: Popup menus and tooltips flicker with previous popup contents when first shown + JDK-8044365: (dc) MulticastSendReceiveTests.java failing with ENOMEM when joining group (OS X 10.9) + JDK-8048215: [TESTBUG] java/lang/management/ManagementFactory/ThreadMXBeanProxy.java Expected non-null LockInfo + JDK-8051349: nsk/jvmti/scenarios/sampling/SP06/sp06t003 fails in nightly + JDK-8080353: JShell: Better error message on attempting to add default method + JDK-8139876: Exclude hanging nsk/stress/stack from execution with deoptimization enabled + JDK-8146090: java/lang/ref/ReachabilityFenceTest.java fails with -XX:+DeoptimizeALot + JDK-8153430: jdk regression test MletParserLocaleTest, ParserInfiniteLoopTest reduce default timeout + JDK-8156207: Resource allocated BitMaps are often cleared unnecessarily + JDK-8159740: JShell: corralled declarations do not have correct source to wrapper mapping + JDK-8175984: ICC_Profile has un-needed, not-empty finalize method + JDK-8176359: Frame#setMaximizedbounds not working properly in multi screen environments + JDK-8183369: RFC unconformity of HttpURLConnection with proxy + JDK-8187078: -XX:+VerifyOops finds numerous problems when running JPRT + JDK-8189861: Refactor CacheFind + JDK-8191169: java/net/Authenticator/B4769350.java failed intermittently + JDK-8191930: [Graal] emits unparseable XML into compile log + JDK-8193879: Java debugger hangs on method invocation + JDK-8196019: java/awt/Window/Grab/GrabTest.java fails on Windows + JDK-8196181: sun/java2d/GdiRendering/InsetClipping.java fails + JDK-8198000: java/awt/List/EmptyListEventTest/EmptyListEventTest.java debug assert on Windows + JDK-8198001: java/awt/Menu/WrongParentAfterRemoveMenu/ /WrongParentAfterRemoveMenu.java debug assert on Windows + JDK-8198339: Test javax/swing/border/Test6981576.java is unstable + JDK-8200701: jdk/jshell/ExceptionsTest.java fails on Windows, after JDK-8198801 + JDK-8203264: JNI exception pending in PlainDatagramSocketImpl.c:740 + JDK-8203672: JNI exception pending in PlainSocketImpl.c + JDK-8203673: JNI exception pending in DualStackPlainDatagramSocketImpl.c:398 + JDK-8204834: Fix confusing 'allocate' naming in OopStorage + JDK-8205399: Set node color on pinned HashMap.TreeNode deletion + JDK-8205653: test/jdk/sun/management/jmxremote/bootstrap/ /RmiRegistrySslTest.java and RmiSslBootstrapTest.sh fail with handshake_failure + JDK-8206179: com/sun/management/OperatingSystemMXBean/ /GetCommittedVirtualMemorySize.java fails with Committed virtual memory size illegal value + JDK-8207334: VM times out in VM_HandshakeAllThreads::doit() with RunThese30M + JDK-8208277: Code cache heap (-XX:ReservedCodeCacheSize) doesn't work with 1GB LargePages
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1046303 1050244 1050549 1051510 1051858 1058115 1061840 1065600 1065729 1071995 1079730 1083548 1083647 1085030 1086301 1086313 1086314 1088810 1090888 1098403 1103989 1103990 1103991 1104353 1104427 1104745 1105392 1109837 1111025 1111331 1111666 1112178 1112374 1112504 1113956 1114279 1114685 1115026 1118338 1118661 1120067 1120095 1120163 1123156 1123328 1126206 1126826 1126829 1126831 1127371 1127611 1127682 1129551 1129770 1133021 1133147 1134973 1136666 1140025 1140126 1142649 1142685 1143609 1143959 1144162 1144333 1146519 1146544 1151548 1151910 1151927 1152107 1152148 1152631 1153108 1153535 1153768 1153770 1153917 1154243 1154601 1154768 1154916 1155331 1155334 1155689 1156259 1156286 1156462 1157155 1157157 1157169 1157303 1157424 1157480 1157692 1157755 1157770 1157853 1157895 1157908 1157966 1158013 1158021 1158026 1158071 1158094 1158132 1158381 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158819 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1159024 1159028 1159271 1159297 1159377 1159394 1159483 1159484 1159500 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160147 1160195 1160210 1160211 1160218 1160254 1160433 1160442 1160469 1160470 1160476 1160560 1160590 1160618 1160678 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1160979 1161066 1161074 1161087 1161243 1161312 1161360 1161472 1161514 1161518 1161522 1161523 1161549 1161552 1161674 1161702 1161907 1161931 1161933 1161934 1161935 1161936 1161937 1162028 1162067 1162109 1162139 1162557 1162617 1162618 1162619 1162623 1162928 1162943 1163018 1163206 1163333 1163383 1163384 1163524 1163744 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164692 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1164825 1164860 1165528 1165629 1165631 1165776 1166240 1166965 1169658 1169790 1170232 1170940 1171558 1171688 1171988 1172073 1172108 1172205 1172225 1172247 1172418 1172428 1172524 1172643 1172871 1172872 1172873 1172963 1173060 1173376 1173377 1173378 1173380 1173485 1173798 1173954 1174003 1174026 1174070 1174157 1174205 1174387 1174484 1174547 1174549 1174550 1174625 1174658 1174685 1174689 1174699 1174734 1174757 1174771 1174840 1174841 1174843 1174844 1174845 1174852 1174873 1174904 1174926 1174968 1175062 1175063 1175064 1175065 1175066 1175067 1175112 1175127 1175128 1175149 1175199 1175213 1175228 1175232 1175284 1175393 1175394 1175396 1175397 1175398 1175399 1175400 1175401 1175402 1175403 1175404 1175405 1175406 1175407 1175408 1175409 1175410 1175411 1175412 1175413 1175414 1175415 1175416 1175417 1175418 1175419 1175420 1175421 1175422 1175423 1175440 1175493 1175515 1175518 1175526 1175550 1175654 1175666 1175667 1175668 1175669 1175670 1175691 1175767 1175768 1175769 1175770 1175771 1175772 1175786 1175873 1176069 1176410 1177143 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-10220 CVE-2019-11091 CVE-2019-12972 CVE-2019-14250 CVE-2019-14444 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-15213 CVE-2019-16746 CVE-2019-16994 CVE-2019-17450 CVE-2019-17451 CVE-2019-17569 CVE-2019-18808 CVE-2019-19036 CVE-2019-19045 CVE-2019-19051 CVE-2019-19054 CVE-2019-19066 CVE-2019-19318 CVE-2019-19319 CVE-2019-19332 CVE-2019-19338 CVE-2019-19447 CVE-2019-19523 CVE-2019-19526 CVE-2019-19527 CVE-2019-19532 CVE-2019-19533 CVE-2019-19535 CVE-2019-19537 CVE-2019-19767 CVE-2019-19927 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-20382 CVE-2019-20807 CVE-2019-6778 CVE-2019-9074 CVE-2019-9075 CVE-2019-9077 CVE-2020-0543 CVE-2020-10018 CVE-2020-10135 CVE-2020-10759 CVE-2020-11793 CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-14386 CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-16166 CVE-2020-1699 CVE-2020-1700 CVE-2020-1711 CVE-2020-1749 CVE-2020-1749 CVE-2020-1935 CVE-2020-1938 CVE-2020-1983 CVE-2020-24394 CVE-2020-25219 CVE-2020-26154 CVE-2020-2732 CVE-2020-7039 CVE-2020-7053 CVE-2020-8428 CVE-2020-8608 CVE-2020-8648 CVE-2020-8992 SUSE-SU-2019:1248-1 SUSE-SU-2020:0296-1 SUSE-SU-2020:0631-1 SUSE-SU-2020:0891-1 SUSE-SU-2020:1109-1 SUSE-SU-2020:1523-1 SUSE-SU-2020:1551-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:3060-1 SUSE-SU-2020:3065-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information strongswan-4.4.0-6.21 is installed OR strongswan-doc-4.4.0-6.21 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND cvs-1.12.12-181 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information empathy-3.12.13-8.3 is installed OR empathy-lang-3.12.13-8.3 is installed OR telepathy-mission-control-plugin-goa-3.12.13-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information sane-backends-1.0.31-6.3 is installed OR sane-backends-32bit-1.0.31-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information java-11-openjdk-11.0.8.0-3.45 is installed OR java-11-openjdk-demo-11.0.8.0-3.45 is installed OR java-11-openjdk-devel-11.0.8.0-3.45 is installed OR java-11-openjdk-headless-11.0.8.0-3.45 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_38-default-3-2 is installed OR kernel-livepatch-SLE15_Update_15-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_34-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_9-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information dfu-tool-1.0.9-6.3 is installed OR fwupd-1.0.9-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information xen-4.13.1_04-3.4 is installed OR xen-devel-4.13.1_04-3.4 is installed OR xen-doc-html-4.13.1_04-3.4 is installed OR xen-libs-4.13.1_04-3.4 is installed OR xen-libs-32bit-4.13.1_04-3.4 is installed OR xen-tools-4.13.1_04-3.4 is installed OR xen-tools-domU-4.13.1_04-3.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.3_04-3.19 is installed OR xen-devel-4.10.3_04-3.19 is installed OR xen-tools-4.10.3_04-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.31-4.22 is installed OR tomcat-admin-webapps-9.0.31-4.22 is installed OR tomcat-el-3_0-api-9.0.31-4.22 is installed OR tomcat-jsp-2_3-api-9.0.31-4.22 is installed OR tomcat-lib-9.0.31-4.22 is installed OR tomcat-servlet-4_0-api-9.0.31-4.22 is installed OR tomcat-webapps-9.0.31-4.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-7-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND autofs-5.0.9-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_59-92_20-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_8-12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dracut-044-113 is installed OR dracut-fips-044-113 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND libplist3-1.12-20.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed OR libwebkit2gtk3-lang-2.28.1-3.49 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed OR webkit2gtk3-2.28.1-3.49 is installed OR webkit2gtk3-devel-2.28.1-3.49 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.27 is installed OR libavcodec-devel-3.4.2-4.27 is installed OR libavformat-devel-3.4.2-4.27 is installed OR libavformat57-3.4.2-4.27 is installed OR libavresample-devel-3.4.2-4.27 is installed OR libavresample3-3.4.2-4.27 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information LibVNCServer-0.9.10-4.22 is installed OR libvncclient0-0.9.10-4.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information nodejs-common-1.0-2 is installed OR nodejs6-6.11.1-11.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed

BACK