Oval Definition:	oval:org.opensuse.security:def:55976
Revision Date: 2021-11-24 Version: 1 Title: Security update for java-1_7_0-openjdk (Important) Description: This update for java-1_7_0-openjdk fixes the following issues: Update to OpenJDK 7u321 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). Family: unix Class: patch Status: Reference(s): 1015565 1020102 1037824 1052311 1052365 1053153 1069708 1109105 1111479 1111480 1112229 1115034 1117022 1117274 1117313 1117327 1117331 1120644 1122191 1142772 1145692 1154862 1191901 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 792432 813026 819204 825935 833483 839653 839663 840997 842417 846849 848014 848657 849665 849667 849668 851386 855809 869663 920057 934920 948516 948686 952849 953110 954872 958963 959094 960155 960305 961173 964465 CVE-2013-1682 CVE-2013-1684 CVE-2013-1685 CVE-2013-1686 CVE-2013-1687 CVE-2013-1690 CVE-2013-1692 CVE-2013-1693 CVE-2013-1697 CVE-2013-1922 CVE-2013-2007 CVE-2013-4375 CVE-2013-4416 CVE-2013-4494 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2013-6441 CVE-2014-3591 CVE-2014-7300 CVE-2015-0837 CVE-2015-3238 CVE-2015-5313 CVE-2015-5313 CVE-2015-7552 CVE-2017-0381 CVE-2017-1000111 CVE-2017-1000112 CVE-2017-10661 CVE-2017-16939 CVE-2018-17183 CVE-2018-17961 CVE-2018-18073 CVE-2018-18284 CVE-2018-19409 CVE-2018-19475 CVE-2018-19476 CVE-2018-19477 CVE-2018-20406 CVE-2019-1010180 CVE-2019-17498 CVE-2019-5010 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 SUSE-SU-2015:1626-1 SUSE-SU-2016:0225-1 SUSE-SU-2016:0923-1 SUSE-SU-2016:0931-1 SUSE-SU-2017:0436-1 SUSE-SU-2017:1398-1 SUSE-SU-2017:2150-1 SUSE-SU-2017:3336-1 SUSE-SU-2018:4090-1 SUSE-SU-2019:0243-1 SUSE-SU-2019:2914-1 SUSE-SU-2019:2936-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP2-LTSS-ERICSSON SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libid3tag0-0.15.1b-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information MozillaThunderbird-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-buildsymbols-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-translations-common-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-translations-other-60.7.2-lp151.2.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-17.0.7esr-0.8 is installed OR MozillaFirefox-branding-SLED-7-0.12 is installed OR MozillaFirefox-translations-17.0.7esr-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libvirt-1.2.5-12 is installed OR libvirt-client-1.2.5-12 is installed OR libvirt-client-32bit-1.2.5-12 is installed OR libvirt-doc-1.2.5-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libopus0-1.1-3 is installed OR opus-1.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gnome-settings-daemon-3.10.2-20 is installed OR gnome-settings-daemon-lang-3.10.2-20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_48-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_48-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_17-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bind-9.9.9P1-46 is installed OR bind-chrootenv-9.9.9P1-46 is installed OR bind-doc-9.9.9P1-46 is installed OR bind-libs-9.9.9P1-46 is installed OR bind-libs-32bit-9.9.9P1-46 is installed OR bind-utils-9.9.9P1-46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libspice-client-glib-2_0-8-0.33-1 is installed OR libspice-client-glib-helper-0.33-1 is installed OR libspice-client-gtk-3_0-5-0.33-1 is installed OR libspice-controller0-0.33-1 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.33-1 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.33-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bind-9.11.2-1 is installed OR bind-chrootenv-9.11.2-1 is installed OR bind-doc-9.11.2-1 is installed OR bind-utils-9.11.2-1 is installed OR libbind9-160-9.11.2-1 is installed OR libdns169-9.11.2-1 is installed OR libirs160-9.11.2-1 is installed OR libisc166-9.11.2-1 is installed OR libisc166-32bit-9.11.2-1 is installed OR libisccc160-9.11.2-1 is installed OR libisccfg160-9.11.2-1 is installed OR liblwres160-9.11.2-1 is installed OR python-bind-9.11.2-1 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.54 is installed OR kernel-default-base-3.12.74-60.64.54 is installed OR kernel-default-devel-3.12.74-60.64.54 is installed OR kernel-devel-3.12.74-60.64.54 is installed OR kernel-macros-3.12.74-60.64.54 is installed OR kernel-source-3.12.74-60.64.54 is installed OR kernel-syms-3.12.74-60.64.54 is installed OR kernel-xen-3.12.74-60.64.54 is installed OR kernel-xen-base-3.12.74-60.64.54 is installed OR kernel-xen-devel-3.12.74-60.64.54 is installed OR kgraft-patch-3_12_74-60_64_54-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_54-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_19-1-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-tablib-0.9.11-3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed
BACK