Oval Definition:oval:org.opensuse.security:def:55975
Revision Date:2021-11-23Version:1
Title:Security update for java-1_8_0-openjdk (Important)
Description:

This update for java-1_8_0-openjdk fixes the following issues:

Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).
Family:unixClass:patch
Status:Reference(s):1000362
1021814
1021817
1021818
1021819
1021820
1021821
1021822
1021823
1021824
1021991
1034849
1052916
1053153
1069708
1115034
1116574
1142772
1144902
1145692
1150003
1150250
1191901
1191903
1191904
1191905
1191906
1191909
1191910
1191911
1191912
1191913
1191914
817799
824676
826882
828623
831359
833251
833483
833796
834751
835896
836239
839596
839600
840196
840592
841766
842511
842512
842513
842514
842515
845520
849019
861019
939342
943967
943968
943969
963017
CVE-2011-3970
CVE-2012-2825
CVE-2012-3466
CVE-2012-6139
CVE-2012-6152
CVE-2013-1432
CVE-2013-1442
CVE-2013-1918
CVE-2013-4242
CVE-2013-4355
CVE-2013-4361
CVE-2013-4368
CVE-2013-4369
CVE-2013-4370
CVE-2013-4371
CVE-2013-4375
CVE-2013-4416
CVE-2013-6477
CVE-2013-6478
CVE-2013-6479
CVE-2013-6481
CVE-2013-6482
CVE-2013-6483
CVE-2013-6484
CVE-2013-6485
CVE-2013-6486
CVE-2013-6487
CVE-2013-6489
CVE-2013-6490
CVE-2014-0020
CVE-2015-3228
CVE-2015-5198
CVE-2015-5199
CVE-2015-5200
CVE-2016-2776
CVE-2017-10661
CVE-2017-16939
CVE-2017-2885
CVE-2017-3289
CVE-2017-3509
CVE-2017-3511
CVE-2017-3512
CVE-2017-3514
CVE-2017-3526
CVE-2017-3533
CVE-2017-3539
CVE-2017-3544
CVE-2017-5373
CVE-2017-5375
CVE-2017-5376
CVE-2017-5378
CVE-2017-5380
CVE-2017-5383
CVE-2017-5386
CVE-2017-5390
CVE-2017-5396
CVE-2018-13785
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3183
CVE-2018-3214
CVE-2019-1010180
CVE-2019-10218
CVE-2019-1547
CVE-2019-1563
CVE-2021-35550
CVE-2021-35556
CVE-2021-35559
CVE-2021-35561
CVE-2021-35564
CVE-2021-35565
CVE-2021-35567
CVE-2021-35578
CVE-2021-35586
CVE-2021-35588
CVE-2021-35603
SUSE-SU-2015:1925-1
SUSE-SU-2016:0884-1
SUSE-SU-2016:2399-1
SUSE-SU-2017:0427-1
SUSE-SU-2017:1400-1
SUSE-SU-2017:2130-1
SUSE-SU-2017:3332-1
SUSE-SU-2018:4064-1
SUSE-SU-2019:2397-1
SUSE-SU-2019:2875-1
SUSE-SU-2019:2914-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP2-LTSS-ERICSSON
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libical2-2.0.0-lp150.1 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libnetpbm-devel-10.80.1-lp151.4.3 is installed
  • OR libnetpbm11-10.80.1-lp151.4.3 is installed
  • OR libnetpbm11-32bit-10.80.1-lp151.4.3 is installed
  • OR netpbm-10.80.1-lp151.4.3 is installed
  • OR netpbm-vulnerable-10.80.1-lp151.4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • finch-2.6.6-0.23 is installed
  • OR libpurple-2.6.6-0.23 is installed
  • OR libpurple-lang-2.6.6-0.23 is installed
  • OR libpurple-meanwhile-2.6.6-0.23 is installed
  • OR libpurple-tcl-2.6.6-0.23 is installed
  • OR pidgin-2.6.6-0.23 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libvdpau-0.4.1-16.20 is installed
  • OR libvdpau1-0.4.1-16.20 is installed
  • OR libvdpau1-32bit-0.4.1-16.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-45.7.0esr-99 is installed
  • OR MozillaFirefox-translations-45.7.0esr-99 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gnome-keyring-3.10.1-11 is installed
  • OR gnome-keyring-32bit-3.10.1-11 is installed
  • OR gnome-keyring-lang-3.10.1-11 is installed
  • OR gnome-keyring-pam-3.10.1-11 is installed
  • OR gnome-keyring-pam-32bit-3.10.1-11 is installed
  • OR libgck-modules-gnome-keyring-3.10.1-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_35-default-8-2 is installed
  • OR kgraft-patch-3_12_69-60_64_35-xen-8-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_14-8-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bash-4.3-78 is installed
  • OR bash-doc-4.3-78 is installed
  • OR libreadline6-6.3-78 is installed
  • OR libreadline6-32bit-6.3-78 is installed
  • OR readline-doc-6.3-78 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.95 is installed
  • OR kernel-default-base-4.4.121-92.95 is installed
  • OR kernel-default-devel-4.4.121-92.95 is installed
  • OR kernel-devel-4.4.121-92.95 is installed
  • OR kernel-macros-4.4.121-92.95 is installed
  • OR kernel-source-4.4.121-92.95 is installed
  • OR kernel-syms-4.4.121-92.95 is installed
  • OR lttng-modules-2.7.1-9.6 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND shadow-4.2.1-27.9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_85-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-4-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libsoup-2_4-1-2.54.1-4 is installed
  • OR libsoup-2_4-1-32bit-2.54.1-4 is installed
  • OR libsoup-lang-2.54.1-4 is installed
  • OR typelib-1_0-Soup-2_4-2.54.1-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.89 is installed
  • OR MozillaFirefox-branding-SLE-68-32.8 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND clamav-0.100.1-33.15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • bash-4.3-83.15 is installed
  • OR bash-doc-4.3-83.15 is installed
  • OR libreadline6-6.3-83.15 is installed
  • OR libreadline6-32bit-6.3-83.15 is installed
  • OR readline-doc-6.3-83.15 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • libsoup-2.44.2-2.3 is installed
  • OR libsoup-2_4-1-2.44.2-2.3 is installed
  • OR libsoup-2_4-1-32bit-2.44.2-2.3 is installed
  • OR libsoup-lang-2.44.2-2.3 is installed
  • OR typelib-1_0-Soup-2_4-2.44.2-2.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • xen-4.7.6_04-43.39 is installed
  • OR xen-doc-html-4.7.6_04-43.39 is installed
  • OR xen-libs-4.7.6_04-43.39 is installed
  • OR xen-libs-32bit-4.7.6_04-43.39 is installed
  • OR xen-tools-4.7.6_04-43.39 is installed
  • OR xen-tools-domU-4.7.6_04-43.39 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND couchdb-1.7.2-3.3 is installed
  • BACK