Oval Definition:	oval:org.opensuse.security:def:55316
Revision Date: 2022-01-04 Version: 1 Title: Security update for java-1_8_0-ibm (Important) (in QA) Description: This update for java-1_8_0-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 7 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. (bsc#1194198, bsc#1192052) - CVE-2021-35586: Excessive memory allocation in BMPImageReader. (bsc#1191914) - CVE-2021-35564: Certificates with end dates too far in the future can corrupt keystore. (bsc#1191913) - CVE-2021-35559: Excessive memory allocation in RTFReader. (bsc#1191911) - CVE-2021-35556: Excessive memory allocation in RTFParser. (bsc#1191910) - CVE-2021-35565: Loop in HttpsServer triggered during TLS session close. (bsc#1191909) - CVE-2021-35588: Incomplete validation of inner class references in ClassFileParser. (bsc#1191905) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) - CVE-2021-2369: JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2163: Incomplete enforcement of JAR signing disabled algorithms. (bsc#1185055) - CVE-2021-35560: Fixed a vulnerability in the component Deployment. (bsc#1191902) - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake. (bsc#1191904) This patch is currently in QA and not yet available for download. Family: unix Class: patch Status: Reference(s): 1004237 1005544 1064715 1064716 1076576 1077993 1078806 1078813 1086416 1090051 1092100 1111331 1120813 1121753 1126325 1127458 1131595 1131955 1148987 1185055 1188564 1188565 1191902 1191904 1191905 1191909 1191910 1191911 1191913 1191914 1192052 1194198 1194232 868937 900611 937339 946744 979475 982575 982745 983249 988591 990419 993819 994749 994844 995075 995324 995359 995377 998190 999665 999666 999668 CVE-2010-1163 CVE-2010-1646 CVE-2011-0010 CVE-2012-2337 CVE-2012-5112 CVE-2012-5133 CVE-2013-1775 CVE-2013-1776 CVE-2014-0578 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-3686 CVE-2014-9680 CVE-2015-1335 CVE-2015-2330 CVE-2015-3114 CVE-2015-3115 CVE-2015-3116 CVE-2015-3117 CVE-2015-3118 CVE-2015-3119 CVE-2015-3120 CVE-2015-3121 CVE-2015-3122 CVE-2015-3123 CVE-2015-3124 CVE-2015-3125 CVE-2015-3126 CVE-2015-3127 CVE-2015-3128 CVE-2015-3129 CVE-2015-3130 CVE-2015-3131 CVE-2015-3132 CVE-2015-3133 CVE-2015-3134 CVE-2015-3135 CVE-2015-3136 CVE-2015-3137 CVE-2015-4428 CVE-2015-4429 CVE-2015-4430 CVE-2015-4431 CVE-2015-4432 CVE-2015-4433 CVE-2015-5116 CVE-2015-5117 CVE-2015-5118 CVE-2015-5119 CVE-2015-7995 CVE-2015-9019 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-2180 CVE-2016-2181 CVE-2016-2182 CVE-2016-2183 CVE-2016-4658 CVE-2016-4738 CVE-2016-5131 CVE-2016-6302 CVE-2016-6303 CVE-2016-6304 CVE-2016-6306 CVE-2016-7032 CVE-2016-7076 CVE-2016-8602 CVE-2017-1000367 CVE-2017-1000368 CVE-2017-13089 CVE-2017-13090 CVE-2017-15412 CVE-2017-5029 CVE-2017-5130 CVE-2018-10195 CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 CVE-2019-13627 CVE-2019-3840 CVE-2019-3886 CVE-2021-2163 CVE-2021-2341 CVE-2021-2369 CVE-2021-35556 CVE-2021-35559 CVE-2021-35560 CVE-2021-35564 CVE-2021-35565 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-41035 SUSE-SU-2015:1829-1 SUSE-SU-2016:2394-1 SUSE-SU-2016:2650-1 SUSE-SU-2016:2654-1 SUSE-SU-2017:2871-2 SUSE-SU-2018:0401-1 SUSE-SU-2018:1066-1 SUSE-SU-2019:0450-1 SUSE-SU-2019:1042-1 SUSE-SU-2019:1235-1 SUSE-SU-2019:2510-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND hyper-v-7-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.13 is installed OR kernel-debug-base-4.12.14-lp151.28.13 is installed OR kernel-debug-devel-4.12.14-lp151.28.13 is installed OR kernel-default-4.12.14-lp151.28.13 is installed OR kernel-default-base-4.12.14-lp151.28.13 is installed OR kernel-default-devel-4.12.14-lp151.28.13 is installed OR kernel-devel-4.12.14-lp151.28.13 is installed OR kernel-docs-4.12.14-lp151.28.13 is installed OR kernel-docs-html-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.13 is installed OR kernel-macros-4.12.14-lp151.28.13 is installed OR kernel-obs-build-4.12.14-lp151.28.13 is installed OR kernel-obs-qa-4.12.14-lp151.28.13 is installed OR kernel-source-4.12.14-lp151.28.13 is installed OR kernel-source-vanilla-4.12.14-lp151.28.13 is installed OR kernel-syms-4.12.14-lp151.28.13 is installed OR kernel-vanilla-4.12.14-lp151.28.13 is installed OR kernel-vanilla-base-4.12.14-lp151.28.13 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.481-0.8 is installed OR flash-player-gnome-11.2.202.481-0.8 is installed OR flash-player-kde4-11.2.202.481-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND lxc-0.8.0-0.25 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libxml2-2.9.4-46.12 is installed OR libxml2-2-2.9.4-46.12 is installed OR libxml2-2-32bit-2.9.4-46.12 is installed OR libxml2-tools-2.9.4-46.12 is installed OR python-libxml2-2.9.4-46.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libxslt-tools-1.1.28-16 is installed OR libxslt1-1.1.28-16 is installed OR libxslt1-32bit-1.1.28-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libjavascriptcoregtk-3_0-0-2.4.8-16 is installed OR libwebkitgtk-3_0-0-2.4.8-16 is installed OR libwebkitgtk3-lang-2.4.8-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-6-3 is installed OR kgraft-patch-3_12_67-60_64_24-xen-6-3 is installed OR kgraft-patch-SLE12-SP1_Update_11-6-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cups-filters-1.0.58-13 is installed OR cups-filters-cups-browsed-1.0.58-13 is installed OR cups-filters-foomatic-rip-1.0.58-13 is installed OR cups-filters-ghostscript-1.0.58-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr7.0-30.84.1 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr7.0-30.84.1 is installed OR java-1_8_0-ibm-devel-1.8.0_sr7.0-30.84.1 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr7.0-30.84.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information curl-7.37.0-37.37 is installed OR libcurl4-7.37.0-37.37 is installed OR libcurl4-32bit-7.37.0-37.37 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_32-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_11-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.6.0-109.110 is installed OR MozillaFirefox-translations-common-68.6.0-109.110 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information liblouis-2.6.4-6.6 is installed OR liblouis-data-2.6.4-6.6 is installed OR liblouis9-2.6.4-6.6 is installed OR python-louis-2.6.4-6.6 is installed OR python3-louis-2.6.4-6.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND wget-1.14-21.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information erlang-17.5.6-3.3 is installed OR erlang-epmd-17.5.6-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.6 is installed
BACK