Oval Definition:	oval:org.opensuse.security:def:56862
Revision Date: 2020-12-01 Version: 1 Title: Security update for java-1_7_0-openjdk (Important) Description: This update for java-1_7_0-openjdk to version 7u201 fixes the following issues: Security issues fixed: - CVE-2018-3136: Manifest better support (bsc#1112142) - CVE-2018-3139: Better HTTP Redirection (bsc#1112143) - CVE-2018-3149: Enhance JNDI lookups (bsc#1112144) - CVE-2018-3169: Improve field accesses (bsc#1112146) - CVE-2018-3180: Improve TLS connections stability (bsc#1112147) - CVE-2018-3214: Better RIFF reading support (bsc#1112152) - CVE-2018-13785: Upgrade JDK 8u to libpng 1.6.35 (bsc#1112153) - CVE-2018-16435: heap-based buffer overflow in SetData function in cmsIT8LoadFromFile - CVE-2018-2938: Support Derby connections (bsc#1101644) - CVE-2018-2940: Better stack walking (bsc#1101645) - CVE-2018-2952: Exception to Pattern Syntax (bsc#1101651) - CVE-2018-2973: Improve LDAP support (bsc#1101656) - CVE-2018-3639 cpu speculative store bypass mitigation Family: unix Class: patch Status: Reference(s): 1003952 1005522 1005523 1005524 1005525 1005526 1005527 1005528 1014136 1020983 1026236 1027519 1031460 1033466 1033467 1033468 1034845 1036470 1037243 1042160 1042863 1042882 1042893 1042915 1042923 1042924 1042931 1042938 1043074 1043297 1045327 1057950 1087082 1087083 1089343 1091107 1101644 1101645 1101651 1101656 1104134 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1127458 1131233 1131237 1131239 1131241 1131245 1131945 1155094 1162224 1162367 1162825 1165894 947494 958501 966891 976942 976943 977614 977615 977616 977617 977621 982331 984639 987176 987866 988361 989528 990531 994399 CVE-2010-1205 CVE-2010-4000 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3026 CVE-2011-3048 CVE-2011-3328 CVE-2011-3464 CVE-2012-3386 CVE-2015-8126 CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 CVE-2016-2109 CVE-2016-2775 CVE-2016-4983 CVE-2016-5011 CVE-2016-5542 CVE-2016-5554 CVE-2016-5556 CVE-2016-5568 CVE-2016-5573 CVE-2016-5582 CVE-2016-5597 CVE-2016-6170 CVE-2017-1000251 CVE-2017-10911 CVE-2017-10912 CVE-2017-10913 CVE-2017-10914 CVE-2017-10915 CVE-2017-10916 CVE-2017-10917 CVE-2017-10918 CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 CVE-2017-15274 CVE-2017-3136 CVE-2017-3137 CVE-2017-3138 CVE-2017-8112 CVE-2017-8309 CVE-2017-8905 CVE-2017-9330 CVE-2017-9374 CVE-2017-9503 CVE-2018-13785 CVE-2018-16435 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-3639 CVE-2018-3640 CVE-2018-3646 CVE-2018-3646 CVE-2019-0196 CVE-2019-0197 CVE-2019-0211 CVE-2019-0217 CVE-2019-0220 CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10899 CVE-2019-10901 CVE-2019-10903 CVE-2019-18348 CVE-2019-3840 CVE-2019-9674 CVE-2020-8492 SUSE-SU-2016:1233-1 SUSE-SU-2016:2915-1 SUSE-SU-2016:2953-1 SUSE-SU-2016:2954-1 SUSE-SU-2017:0998-1 SUSE-SU-2017:1812-1 SUSE-SU-2017:2796-1 SUSE-SU-2018:2331-1 SUSE-SU-2018:2480-1 SUSE-SU-2019:0049-1 SUSE-SU-2019:0878-1 SUSE-SU-2019:1038-1 SUSE-SU-2020:0854-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gnome-settings-daemon-3.26.2-lp150.5 is installed OR gnome-settings-daemon-lang-3.26.2-lp150.5 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND transfig-3.2.6a-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information java-1_7_0-openjdk-1.7.0.201-43.18 is installed OR java-1_7_0-openjdk-headless-1.7.0.201-43.18 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libwireshark9-2.4.14-48.45 is installed OR libwiretap7-2.4.14-48.45 is installed OR libwscodecs1-2.4.14-48.45 is installed OR libwsutil8-2.4.14-48.45 is installed OR wireshark-2.4.14-48.45 is installed OR wireshark-gtk-2.4.14-48.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dovecot22-2.2.13-4 is installed OR dovecot22-backend-mysql-2.2.13-4 is installed OR dovecot22-backend-pgsql-2.2.13-4 is installed OR dovecot22-backend-sqlite-2.2.13-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_12-22.18 is installed OR xen-doc-html-4.5.5_12-22.18 is installed OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed OR xen-libs-4.5.5_12-22.18 is installed OR xen-libs-32bit-4.5.5_12-22.18 is installed OR xen-tools-4.5.5_12-22.18 is installed OR xen-tools-domU-4.5.5_12-22.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gnome-shell-3.20.4-70 is installed OR gnome-shell-browser-plugin-3.20.4-70 is installed OR gnome-shell-lang-3.20.4-70 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-demo-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-devel-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-headless-1.7.0.261-43.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_107-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_29-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libxerces-c-3_1-3.1.1-12 is installed OR libxerces-c-3_1-32bit-3.1.1-12 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
BACK