Oval Definition:oval:org.opensuse.security:def:57532
Revision Date:2021-11-23Version:1
Title:Security update for java-1_8_0-openjdk (Important)
Description:

This update for java-1_8_0-openjdk fixes the following issues:

Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).
Family:unixClass:patch
Status:Reference(s):1034849
1049086
1084521
1084524
1084532
1104301
1111622
1122293
1122299
1122668
1138459
1141853
1148987
1151021
1168630
1191901
1191903
1191904
1191905
1191906
1191909
1191910
1191911
1191912
1191913
1191914
815451
821668
840753
CVE-2012-4504
CVE-2013-1881
CVE-2013-2062
CVE-2014-2524
CVE-2014-3065
CVE-2014-3566
CVE-2014-4288
CVE-2014-6271
CVE-2014-6277
CVE-2014-6278
CVE-2014-6456
CVE-2014-6457
CVE-2014-6458
CVE-2014-6466
CVE-2014-6476
CVE-2014-6492
CVE-2014-6493
CVE-2014-6502
CVE-2014-6503
CVE-2014-6506
CVE-2014-6511
CVE-2014-6512
CVE-2014-6513
CVE-2014-6515
CVE-2014-6527
CVE-2014-6531
CVE-2014-6532
CVE-2014-6558
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187
CVE-2014-8891
CVE-2014-8892
CVE-2015-0138
CVE-2015-0192
CVE-2015-0204
CVE-2015-0458
CVE-2015-0459
CVE-2015-0469
CVE-2015-0477
CVE-2015-0478
CVE-2015-0480
CVE-2015-0488
CVE-2015-0491
CVE-2015-1419
CVE-2015-1914
CVE-2015-1931
CVE-2015-2590
CVE-2015-2601
CVE-2015-2613
CVE-2015-2619
CVE-2015-2621
CVE-2015-2625
CVE-2015-2632
CVE-2015-2637
CVE-2015-2638
CVE-2015-2664
CVE-2015-2808
CVE-2015-4000
CVE-2015-4729
CVE-2015-4731
CVE-2015-4732
CVE-2015-4733
CVE-2015-4734
CVE-2015-4748
CVE-2015-4749
CVE-2015-4760
CVE-2015-4803
CVE-2015-4805
CVE-2015-4806
CVE-2015-4810
CVE-2015-4835
CVE-2015-4840
CVE-2015-4842
CVE-2015-4843
CVE-2015-4844
CVE-2015-4860
CVE-2015-4871
CVE-2015-4872
CVE-2015-4882
CVE-2015-4883
CVE-2015-4893
CVE-2015-4902
CVE-2015-4903
CVE-2015-4911
CVE-2015-5006
CVE-2015-5041
CVE-2015-7575
CVE-2015-7981
CVE-2015-8126
CVE-2015-8472
CVE-2015-8540
CVE-2016-0264
CVE-2016-0363
CVE-2016-0376
CVE-2016-0402
CVE-2016-0448
CVE-2016-0466
CVE-2016-0483
CVE-2016-0494
CVE-2016-0686
CVE-2016-0687
CVE-2016-3422
CVE-2016-3426
CVE-2016-3427
CVE-2016-3443
CVE-2016-3449
CVE-2016-3485
CVE-2016-3511
CVE-2016-3598
CVE-2017-10978
CVE-2017-10983
CVE-2017-10984
CVE-2017-10985
CVE-2017-10987
CVE-2017-10988
CVE-2017-3509
CVE-2017-3511
CVE-2017-3512
CVE-2017-3514
CVE-2017-3526
CVE-2017-3533
CVE-2017-3539
CVE-2017-3544
CVE-2018-1000120
CVE-2018-1000121
CVE-2018-1000122
CVE-2018-11212
CVE-2018-18074
CVE-2018-20852
CVE-2018-5383
CVE-2019-10160
CVE-2019-13627
CVE-2019-14835
CVE-2019-2422
CVE-2020-6819
CVE-2020-6820
CVE-2021-35550
CVE-2021-35556
CVE-2021-35559
CVE-2021-35561
CVE-2021-35564
CVE-2021-35565
CVE-2021-35567
CVE-2021-35578
CVE-2021-35586
CVE-2021-35588
CVE-2021-35603
SUSE-SU-2015:1785-1
SUSE-SU-2017:1445-1
SUSE-SU-2017:2243-1
SUSE-SU-2018:0769-1
SUSE-SU-2019:0427-1
SUSE-SU-2019:0604-1
SUSE-SU-2019:2091-1
SUSE-SU-2019:2510-1
SUSE-SU-2019:2613-1
SUSE-SU-2020:0555-1
SUSE-SU-2020:0928-1
SUSE-SU-2021:3771-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND gzip-1.9-lp150.2 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libruby2_5-2_5-2.5.5-lp151.4.3 is installed
  • OR ruby-bundled-gems-rpmhelper-0.0.2-lp151.2 is installed
  • OR ruby2.5-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-devel-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-devel-extra-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-doc-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-doc-ri-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-stdlib-2.5.5-lp151.4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • xorg-x11-libXp-7.4-1.18 is installed
  • OR xorg-x11-libXp-32bit-7.4-1.18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • librsvg-2.26.0-2.5 is installed
  • OR librsvg-32bit-2.26.0-2.5 is installed
  • OR rsvg-view-2.26.0-2.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kernel-firmware-20160516git-10.16 is installed
  • OR ucode-amd-20160516git-10.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bash-4.3-78 is installed
  • OR bash-doc-4.3-78 is installed
  • OR libreadline6-6.3-78 is installed
  • OR libreadline6-32bit-6.3-78 is installed
  • OR readline-doc-6.3-78 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libdcerpc-binding0-4.4.2-38.25 is installed
  • OR libdcerpc-binding0-32bit-4.4.2-38.25 is installed
  • OR libdcerpc0-4.4.2-38.25 is installed
  • OR libdcerpc0-32bit-4.4.2-38.25 is installed
  • OR libndr-krb5pac0-4.4.2-38.25 is installed
  • OR libndr-krb5pac0-32bit-4.4.2-38.25 is installed
  • OR libndr-nbt0-4.4.2-38.25 is installed
  • OR libndr-nbt0-32bit-4.4.2-38.25 is installed
  • OR libndr-standard0-4.4.2-38.25 is installed
  • OR libndr-standard0-32bit-4.4.2-38.25 is installed
  • OR libndr0-4.4.2-38.25 is installed
  • OR libndr0-32bit-4.4.2-38.25 is installed
  • OR libnetapi0-4.4.2-38.25 is installed
  • OR libnetapi0-32bit-4.4.2-38.25 is installed
  • OR libsamba-credentials0-4.4.2-38.25 is installed
  • OR libsamba-credentials0-32bit-4.4.2-38.25 is installed
  • OR libsamba-errors0-4.4.2-38.25 is installed
  • OR libsamba-errors0-32bit-4.4.2-38.25 is installed
  • OR libsamba-hostconfig0-4.4.2-38.25 is installed
  • OR libsamba-hostconfig0-32bit-4.4.2-38.25 is installed
  • OR libsamba-passdb0-4.4.2-38.25 is installed
  • OR libsamba-passdb0-32bit-4.4.2-38.25 is installed
  • OR libsamba-util0-4.4.2-38.25 is installed
  • OR libsamba-util0-32bit-4.4.2-38.25 is installed
  • OR libsamdb0-4.4.2-38.25 is installed
  • OR libsamdb0-32bit-4.4.2-38.25 is installed
  • OR libsmbclient0-4.4.2-38.25 is installed
  • OR libsmbclient0-32bit-4.4.2-38.25 is installed
  • OR libsmbconf0-4.4.2-38.25 is installed
  • OR libsmbconf0-32bit-4.4.2-38.25 is installed
  • OR libsmbldap0-4.4.2-38.25 is installed
  • OR libsmbldap0-32bit-4.4.2-38.25 is installed
  • OR libtevent-util0-4.4.2-38.25 is installed
  • OR libtevent-util0-32bit-4.4.2-38.25 is installed
  • OR libwbclient0-4.4.2-38.25 is installed
  • OR libwbclient0-32bit-4.4.2-38.25 is installed
  • OR samba-4.4.2-38.25 is installed
  • OR samba-client-4.4.2-38.25 is installed
  • OR samba-client-32bit-4.4.2-38.25 is installed
  • OR samba-doc-4.4.2-38.25 is installed
  • OR samba-libs-4.4.2-38.25 is installed
  • OR samba-libs-32bit-4.4.2-38.25 is installed
  • OR samba-winbind-4.4.2-38.25 is installed
  • OR samba-winbind-32bit-4.4.2-38.25 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.312-27.66.1 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.312-27.66.1 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.312-27.66.1 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.312-27.66.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libXvnc1-1.6.0-18.28 is installed
  • OR tigervnc-1.6.0-18.28 is installed
  • OR xorg-x11-Xvnc-1.6.0-18.28 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-8-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.131 is installed
  • OR ImageMagick-config-6-SUSE-6.8.8.1-71.131 is installed
  • OR ImageMagick-config-6-upstream-6.8.8.1-71.131 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.131 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.131 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.40-38.34 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • python-PyYAML-5.1.2-26.12 is installed
  • OR python3-PyYAML-5.1.2-26.12 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.68 is installed
  • OR libgcrypt20-1.6.1-16.68 is installed
  • OR libgcrypt20-32bit-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
  • BACK