OVAL Reference oval:org.opensuse.security:def:55446

Oval Definition:

oval:org.opensuse.security:def:55446

Revision Date:	2020-12-01	Version:	1
Title:	Security update for java-1_7_0-openjdk (Important)
Description:	OpenJDK was updated to icedtea 2.5.3 (OpenJDK 7u71) fixing security issues and bugs. Security: - S8015256: Better class accessibility - S8022783, CVE-2014-6504: Optimize C2 optimizations - S8035162: Service printing service - S8035781: Improve equality for annotations - S8036805: Correct linker method lookup. - S8036810: Correct linker field lookup - S8036936: Use local locales - S8037066, CVE-2014-6457: Secure transport layer - S8037846, CVE-2014-6558: Ensure streaming of input cipher streams - S8038364: Use certificate exceptions correctly - S8038899: Safer safepoints - S8038903: More native monitor monitoring - S8038908: Make Signature more robust - S8038913: Bolster XML support - S8039509, CVE-2014-6512: Wrap sockets more thoroughly - S8039533, CVE-2014-6517: Higher resolution resolvers - S8041540, CVE-2014-6511: Better use of pages in font processing - S8041529: Better parameterization of parameter lists - S8041545: Better validation of generated rasters - S8041564, CVE-2014-6506: Improved management of logger resources - S8041717, CVE-2014-6519: Issue with class file parser - S8042609, CVE-2014-6513: Limit splashiness of splash images - S8042797, CVE-2014-6502: Avoid strawberries in LogRecord - S8044274, CVE-2014-6531: Proper property processing Backports: - S4963723: Implement SHA-224 - S7044060: Need to support NSA Suite B Cryptography algorithms - S7122142: (ann) Race condition between isAnnotationPresent and getAnnotations - S7160837: DigestOutputStream does not turn off digest calculation when 'close()' is called - S8006935: Need to take care of long secret keys in HMAC/PRF computation - S8012637: Adjust CipherInputStream class to work in AEAD/GCM mode - S8028192: Use of PKCS11-NSS provider in FIPS mode broken - S8038000: java.awt.image.RasterFormatException: Incorrect scanline stride - S8039396: NPE when writing a class descriptor object to a custom ObjectOutputStream - S8042603: 'SafepointPollOffset' was not declared in static member function 'static bool Arguments::check_vm_args_consistency()' - S8042850: Extra unused entries in ICU ScriptCodes enum - S8052162: REGRESSION: sun/java2d/cmm/ColorConvertOp tests fail since 7u71 b01 - S8053963: (dc) Use DatagramChannel.receive() instead of read() in connect() - S8055176: 7u71 l10n resource file translation update Bugfixes: - PR1988: C++ Interpreter should no longer be used on ppc64 - PR1989: Make jdk_generic_profile.sh handle missing programs better and be more verbose - PR1992, RH735336: Support retrieving proxy settings on GNOME 3.12.2 - PR2000: Synchronise HEAD tarball paths with release branch paths - PR2002: Fix references to hotspot.map following PR2000 - PR2003: --disable-system-gtk option broken by refactoring in PR1736 - PR2009: Checksum of policy JAR files changes on every build - PR2014: Use version from hotspot.map to create tarball filename - PR2015: Update hotspot.map documentation in INSTALL - PR2025: LCMS_CFLAGS and LCMS_LIBS should not be used unless SYSTEM_LCMS is enabled - RH1015432: java-1.7.0-openjdk: Fails on PPC with StackOverflowError (revised comprehensive fix) CACAO - PR2030, G453612, CA172: ARM hardfloat support for CACAO AArch64 port - AArch64 C2 instruct for smull - Add frame anchor fences. - Add MacroAssembler::maybe_isb() - Add missing instruction synchronization barriers and cache flushes. - Add support for a few simple intrinsics - Add support for builtin crc32 instructions - Add support for Neon implementation of CRC32 - All address constants are 48 bits in size. - array load must only read 32 bits - Define uabs(). Use it everywhere an absolute value is wanted. - Fast string comparison - Fast String.equals() - Fix register usage in generate_verify_oop(). - Fix thinko in Atomic::xchg_ptr. - Fix typo in fsqrts - Improve C1 performance improvements in ic_cache checks - Performance improvement and ease of use changes pulled from upstream - Remove obsolete C1 patching code. - Replace hotspot jtreg test suite with tests from jdk7u - S8024648: 7141246 breaks Zero port - Save intermediate state before removing C1 patching code. - Unwind native AArch64 frames. - Use 2- and 3-instruction immediate form of movoop and mov_metadata in C2-generated code. - Various concurrency fixes.
Family:	unix	Class:	patch
Status:		Reference(s):	1046299 1046303 1046305 1050244 1050536 1050545 1051510 1054914 1055117 1055186 1057246 1061840 1064802 1065600 1065729 1066129 1071995 1073513 1082555 1085790 1086323 1087092 1089644 1093205 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1101674 1104967 1109158 1113064 1113722 1114279 1117463 1117665 1119086 1122363 1123034 1123080 1125401 1127155 1127988 1128525 1131304 1132045 1133140 1134303 1135642 1135854 1135873 1136021 1137799 1137861 1137865 1137959 1140155 1140729 1140845 1140883 1141322 1141600 1142076 1142635 1142667 1144375 1144449 1145099 1146042 1146519 1146540 1146664 1148133 1148410 1148712 1148868 1149313 1149446 1149555 1149651 1150381 1150423 1150452 1150465 1150875 1151350 1151508 1151610 1151667 1151671 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152325 1152457 1152460 1152466 1152788 1152791 1152972 1152974 1152975 1153112 1153158 1153236 1153263 1153646 1153713 1153717 1153718 1153719 1153811 1154108 1154189 1154354 1154372 1154578 1154607 1154608 1154610 1154611 1154651 1154747 1158527 1159819 901242 907651 927556 927607 927608 927746 928533 929414 931972 931973 931974 932040 942628 961491 961935 963806 963810 970287 970295 972968 975394 978061 979688 980904 982779 CVE-2009-1210 CVE-2009-1267 CVE-2009-1268 CVE-2009-1269 CVE-2009-1720 CVE-2009-1721 CVE-2009-3241 CVE-2009-3242 CVE-2009-3243 CVE-2010-1455 CVE-2010-2993 CVE-2010-3445 CVE-2010-4300 CVE-2010-4301 CVE-2010-4538 CVE-2011-0024 CVE-2011-0538 CVE-2011-0713 CVE-2011-1138 CVE-2011-1139 CVE-2011-1140 CVE-2011-1143 CVE-2011-1590 CVE-2011-1591 CVE-2011-1592 CVE-2011-1957 CVE-2011-1958 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175 CVE-2011-2597 CVE-2011-2698 CVE-2011-3266 CVE-2011-3360 CVE-2011-3483 CVE-2012-2392 CVE-2012-2393 CVE-2012-2394 CVE-2012-3548 CVE-2012-4048 CVE-2012-4049 CVE-2012-4285 CVE-2012-4286 CVE-2012-4287 CVE-2012-4288 CVE-2012-4289 CVE-2012-4290 CVE-2012-4291 CVE-2012-4292 CVE-2012-4293 CVE-2012-4294 CVE-2012-4295 CVE-2012-4296 CVE-2012-4297 CVE-2012-4298 CVE-2012-5237 CVE-2012-5238 CVE-2012-5239 CVE-2012-5240 CVE-2012-5592 CVE-2012-5593 CVE-2012-5594 CVE-2012-5595 CVE-2012-5596 CVE-2012-5597 CVE-2012-5598 CVE-2012-5599 CVE-2012-5600 CVE-2012-5601 CVE-2012-5602 CVE-2013-1572 CVE-2013-1573 CVE-2013-1574 CVE-2013-1575 CVE-2013-1576 CVE-2013-1577 CVE-2013-1578 CVE-2013-1579 CVE-2013-1580 CVE-2013-1581 CVE-2013-1582 CVE-2013-1583 CVE-2013-1584 CVE-2013-1585 CVE-2013-1586 CVE-2013-1587 CVE-2013-1588 CVE-2013-1589 CVE-2013-1590 CVE-2013-2475 CVE-2013-2476 CVE-2013-2477 CVE-2013-2478 CVE-2013-2479 CVE-2013-2480 CVE-2013-2481 CVE-2013-2482 CVE-2013-2483 CVE-2013-2484 CVE-2013-2485 CVE-2013-2486 CVE-2013-2487 CVE-2013-2488 CVE-2013-3555 CVE-2013-3556 CVE-2013-3557 CVE-2013-3558 CVE-2013-3559 CVE-2013-3560 CVE-2013-3561 CVE-2013-3562 CVE-2013-4083 CVE-2013-4566 CVE-2013-4920 CVE-2013-4921 CVE-2013-4922 CVE-2013-4923 CVE-2013-4924 CVE-2013-4925 CVE-2013-4926 CVE-2013-4927 CVE-2013-4928 CVE-2013-4929 CVE-2013-4930 CVE-2013-4931 CVE-2013-4932 CVE-2013-4933 CVE-2013-4934 CVE-2013-4935 CVE-2013-4936 CVE-2013-5717 CVE-2013-5718 CVE-2013-5719 CVE-2013-5720 CVE-2013-5721 CVE-2013-5722 CVE-2013-6336 CVE-2013-6337 CVE-2013-6338 CVE-2013-6339 CVE-2013-6340 CVE-2013-7112 CVE-2013-7113 CVE-2013-7114 CVE-2014-2281 CVE-2014-2282 CVE-2014-2283 CVE-2014-2299 CVE-2014-2907 CVE-2014-3566 CVE-2014-4020 CVE-2014-5161 CVE-2014-5162 CVE-2014-5163 CVE-2014-5164 CVE-2014-5165 CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6513 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 CVE-2015-0559 CVE-2015-0560 CVE-2015-0561 CVE-2015-0562 CVE-2015-0563 CVE-2015-0564 CVE-2015-2188 CVE-2015-2189 CVE-2015-2191 CVE-2015-3143 CVE-2015-3144 CVE-2015-3145 CVE-2015-3148 CVE-2015-3153 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-3622 CVE-2015-3811 CVE-2015-3812 CVE-2015-3813 CVE-2015-3814 CVE-2015-5185 CVE-2015-5244 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-2047 CVE-2016-3099 CVE-2016-3714 CVE-2016-3715 CVE-2016-3716 CVE-2016-3717 CVE-2016-3718 CVE-2016-4008 CVE-2017-10989 CVE-2017-18595 CVE-2018-18544 CVE-2018-8740 CVE-2019-11745 CVE-2019-14821 CVE-2019-15291 CVE-2019-16232 CVE-2019-16234 CVE-2019-17006 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-8936 CVE-2019-9506 SUSE-SU-2015:0990-1 SUSE-SU-2015:1091-1 SUSE-SU-2015:2218-1 SUSE-SU-2016:1260-1 SUSE-SU-2016:1601-1 SUSE-SU-2016:1620-1 SUSE-SU-2016:2285-1 SUSE-SU-2018:4023-1 SUSE-SU-2019:0789-1 SUSE-SU-2019:1208-1 SUSE-SU-2019:1610-1 SUSE-SU-2019:2879-1 SUSE-SU-2020:0088-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information cyrus-sasl-2.1.26-lp150.3 is installed OR cyrus-sasl-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-crammd5-2.1.26-lp150.3 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-digestmd5-2.1.26-lp150.3 is installed OR cyrus-sasl-digestmd5-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-gssapi-2.1.26-lp150.3 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-plain-2.1.26-lp150.3 is installed OR cyrus-sasl-plain-32bit-2.1.26-lp150.3 is installed OR libsasl2-3-2.1.26-lp150.3 is installed OR libsasl2-3-32bit-2.1.26-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libtasn1-4.13-lp151.4.3 is installed OR libtasn1-6-4.13-lp151.4.3 is installed OR libtasn1-6-32bit-4.13-lp151.4.3 is installed OR libtasn1-devel-4.13-lp151.4.3 is installed OR libtasn1-devel-32bit-4.13-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information postgresql91-9.1.18-0.3 is installed OR postgresql91-docs-9.1.18-0.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND sblim-sfcb-1.3.11-0.25 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information java-1_7_0-openjdk-1.7.0.71-6 is installed OR java-1_7_0-openjdk-headless-1.7.0.71-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libsqlite3-0-3.8.10.2-9.6 is installed OR libsqlite3-0-32bit-3.8.10.2-9.6 is installed OR sqlite3-3.8.10.2-9.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.93 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.93 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.93 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.93 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.93 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-4 is installed OR openexr-2.1.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_45-default-2-2 is installed OR kgraft-patch-3_12_74-60_64_45-xen-2-2 is installed OR kgraft-patch-SLE12-SP1_Update_16-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND coolkey-1.1.0-147 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information apache2-2.4.23-29.18 is installed OR apache2-doc-2.4.23-29.18 is installed OR apache2-example-pages-2.4.23-29.18 is installed OR apache2-prefork-2.4.23-29.18 is installed OR apache2-utils-2.4.23-29.18 is installed OR apache2-worker-2.4.23-29.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information postgresql96-9.6.10-3.22 is installed OR postgresql96-contrib-9.6.10-3.22 is installed OR postgresql96-docs-9.6.10-3.22 is installed OR postgresql96-libs-9.6.10-3.22 is installed OR postgresql96-server-9.6.10-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gnutls-3.3.27-3.3 is installed OR libgnutls-openssl27-3.3.27-3.3 is installed OR libgnutls28-3.3.27-3.3 is installed OR libgnutls28-32bit-3.3.27-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gnutls-3.3.27-3.3 is installed OR libgnutls-openssl27-3.3.27-3.3 is installed OR libgnutls28-3.3.27-3.3 is installed OR libgnutls28-32bit-3.3.27-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information ntp-4.2.8p11-64.5 is installed OR ntp-doc-4.2.8p11-64.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed

BACK