Oval Definition:	oval:org.opensuse.security:def:56096
Revision Date: 2021-11-24 Version: 1 Title: Security update for java-1_7_0-openjdk (Important) Description: This update for java-1_7_0-openjdk fixes the following issues: Update to OpenJDK 7u321 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). Family: unix Class: patch Status: Reference(s): 1003898 1010829 1013659 1013678 1013680 1018556 1045327 1055478 1057950 1068565 1070737 1082216 1082233 1082234 1096718 1101820 1111657 1118597 1130246 1132665 1138748 1139083 1149792 1161167 1166238 1191901 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 295284 857544 912457 934299 936909 946744 948244 949022 950169 953382 958582 958583 958584 958586 969820 971804 972907 973639 974220 981848 985657 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2010-4494 CVE-2011-1944 CVE-2012-2669 CVE-2012-5134 CVE-2012-5532 CVE-2013-0338 CVE-2013-1969 CVE-2014-0191 CVE-2014-0209 CVE-2014-0210 CVE-2014-0211 CVE-2014-3660 CVE-2015-1335 CVE-2015-5252 CVE-2015-5296 CVE-2015-5299 CVE-2015-5330 CVE-2015-5569 CVE-2015-7625 CVE-2015-7626 CVE-2015-7627 CVE-2015-7628 CVE-2015-7629 CVE-2015-7630 CVE-2015-7631 CVE-2015-7632 CVE-2015-7633 CVE-2015-7634 CVE-2015-7643 CVE-2015-7644 CVE-2016-1601 CVE-2016-2774 CVE-2016-3189 CVE-2016-9445 CVE-2016-9446 CVE-2016-9809 CVE-2016-9812 CVE-2016-9813 CVE-2017-1000251 CVE-2017-15274 CVE-2018-10903 CVE-2018-12015 CVE-2018-19870 CVE-2018-19872 CVE-2018-6797 CVE-2018-6798 CVE-2018-6913 CVE-2019-12900 CVE-2019-20503 CVE-2020-0569 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 SUSE-SU-2015:0674-1 SUSE-SU-2015:1742-1 SUSE-SU-2015:1829-1 SUSE-SU-2016:0164-1 SUSE-SU-2016:1138-1 SUSE-SU-2016:1791-1 SUSE-SU-2016:3296-1 SUSE-SU-2017:0292-1 SUSE-SU-2017:2783-1 SUSE-SU-2018:1972-1 SUSE-SU-2019:1955-1 SUSE-SU-2020:0319-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:0790-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP2-LTSS-SAP SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information augeas-1.10.1-lp150.1 is installed OR augeas-lenses-1.10.1-lp150.1 is installed OR libaugeas0-1.10.1-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.80-lp151.2.6 is installed OR chromium-75.0.3770.80-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND lxc-0.8.0-0.25 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.535-0.20 is installed OR flash-player-gnome-11.2.202.535-0.20 is installed OR flash-player-kde4-11.2.202.535-0.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gstreamer-plugins-bad-1.8.3-14 is installed OR gstreamer-plugins-bad-lang-1.8.3-14 is installed OR libgstadaptivedemux-1_0-0-1.8.3-14 is installed OR libgstbadaudio-1_0-0-1.8.3-14 is installed OR libgstbadbase-1_0-0-1.8.3-14 is installed OR libgstbadvideo-1_0-0-1.8.3-14 is installed OR libgstbasecamerabinsrc-1_0-0-1.8.3-14 is installed OR libgstcodecparsers-1_0-0-1.8.3-14 is installed OR libgstgl-1_0-0-1.8.3-14 is installed OR libgstmpegts-1_0-0-1.8.3-14 is installed OR libgstphotography-1_0-0-1.8.3-14 is installed OR libgsturidownloader-1_0-0-1.8.3-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND hyper-v-6-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-8-4 is installed OR kgraft-patch-3_12_69-60_64_29-xen-8-4 is installed OR kgraft-patch-SLE12-SP1_Update_12-8-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_32-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_11-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND log4j-1.2.15-126.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libblkid1-2.29.2-3.12 is installed OR libblkid1-32bit-2.29.2-3.12 is installed OR libfdisk1-2.29.2-3.12 is installed OR libmount1-2.29.2-3.12 is installed OR libmount1-32bit-2.29.2-3.12 is installed OR libsmartcols1-2.29.2-3.12 is installed OR libuuid1-2.29.2-3.12 is installed OR libuuid1-32bit-2.29.2-3.12 is installed OR python-libmount-2.29.2-3.12 is installed OR util-linux-2.29.2-3.12 is installed OR util-linux-lang-2.29.2-3.12 is installed OR util-linux-systemd-2.29.2-3.12 is installed OR uuidd-2.29.2-3.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXv1-1.0.10-7 is installed OR libXv1-32bit-1.0.10-7 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information hostinfo-1.0.1-19.5 is installed OR supportutils-3.0-95.21 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libvirglrenderer0-0.5.0-12.3 is installed OR virglrenderer-0.5.0-12.3 is installed
BACK