Oval Definition:	oval:org.opensuse.security:def:5881
Revision Date: 2021-11-04 Version: 1 Title: Security update for java-1_8_0-openj9 (Important) Description: This update for java-1_8_0-openj9 fixes the following issues: Update to OpenJDK 8u312 build 07 with OpenJ9 0.29.0 virtual machine including Oracle July 2021 and October 2021 CPU changes - CVE-2021-2161: Fixed incorrect handling of partially quoted arguments in ProcessBuilder on Windows (bsc#1185056). - CVE-2021-2163: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). - CVE-2021-2341: Fixed flaw inside the FtpClient (bsc#1188564). - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files (bsc#1188565). - CVE-2021-2388: Fixed flaw inside the Hotspot component performed range check elimination (bsc#1188566). - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). Family: unix Class: patch Status: Reference(s): 1185055 1185056 1188564 1188565 1188566 1191901 1191903 1191904 1191906 1191909 1191910 1191911 1191912 1191913 1191914 CVE-2007-5970 CVE-2008-3522 CVE-2008-7247 CVE-2009-3297 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2010-0750 CVE-2010-1205 CVE-2010-2242 CVE-2010-2494 CVE-2010-5298 CVE-2011-0541 CVE-2011-1146 CVE-2011-1485 CVE-2011-2199 CVE-2011-2501 CVE-2011-2511 CVE-2011-3026 CVE-2011-3045 CVE-2011-3048 CVE-2011-4516 CVE-2011-4517 CVE-2011-4600 CVE-2012-1616 CVE-2012-3386 CVE-2012-3445 CVE-2012-5468 CVE-2012-5615 CVE-2013-0170 CVE-2013-1962 CVE-2013-1976 CVE-2013-2218 CVE-2013-2230 CVE-2013-4153 CVE-2013-4154 CVE-2013-4239 CVE-2013-4288 CVE-2013-4296 CVE-2013-4297 CVE-2013-4311 CVE-2013-4399 CVE-2013-4400 CVE-2013-4401 CVE-2013-6436 CVE-2013-6457 CVE-2013-6458 CVE-2013-7353 CVE-2013-7354 CVE-2014-0028 CVE-2014-0179 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-1447 CVE-2014-2494 CVE-2014-3470 CVE-2014-3633 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-5044 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-8137 CVE-2014-8138 CVE-2014-8157 CVE-2014-8158 CVE-2014-8964 CVE-2014-9029 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152 CVE-2015-3202 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4913 CVE-2015-5203 CVE-2015-5221 CVE-2015-5276 CVE-2015-5969 CVE-2015-7236 CVE-2015-7981 CVE-2015-8025 CVE-2015-8126 CVE-2015-8540 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-10087 CVE-2016-10198 CVE-2016-10199 CVE-2016-10251 CVE-2016-1577 CVE-2016-1867 CVE-2016-2047 CVE-2016-2089 CVE-2016-2116 CVE-2016-3477 CVE-2016-3492 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440 CVE-2016-5584 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 CVE-2016-6354 CVE-2016-6662 CVE-2016-6663 CVE-2016-6664 CVE-2016-7440 CVE-2016-8283 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8880 CVE-2016-8881 CVE-2016-8882 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-8886 CVE-2016-8887 CVE-2016-9395 CVE-2016-9398 CVE-2016-9560 CVE-2016-9583 CVE-2016-9591 CVE-2016-9600 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2016-9843 CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3302 CVE-2017-3312 CVE-2017-3313 CVE-2017-3317 CVE-2017-3318 CVE-2017-5498 CVE-2017-5840 CVE-2017-5841 CVE-2017-5845 CVE-2017-6850 CVE-2017-8779 CVE-2021-2161 CVE-2021-2163 CVE-2021-2341 CVE-2021-2369 CVE-2021-2388 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35603 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE OpenStack Cloud 6 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-PyYAML-3.10-15.1 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.39-47 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.20 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information krb5-mini-1.12.5-40.13 is installed OR krb5-mini-devel-1.12.5-40.13 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libpolkit0-0.112-2 is installed OR libpolkit0-32bit-0.112-2 is installed OR polkit-0.112-2 is installed OR typelib-1_0-Polkit-1_0-0.112-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information xscreensaver-5.22-7 is installed OR xscreensaver-data-5.22-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information NetworkManager-1.0.12-13.6 is installed OR NetworkManager-lang-1.0.12-13.6 is installed OR libnm-glib-vpn1-1.0.12-13.6 is installed OR libnm-glib4-1.0.12-13.6 is installed OR libnm-util2-1.0.12-13.6 is installed OR libnm0-1.0.12-13.6 is installed OR typelib-1_0-NM-1_0-1.0.12-13.6 is installed OR typelib-1_0-NMClient-1_0-1.0.12-13.6 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-13.6 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 is installed AND Package Information libstorage-2.25.16.1-3.1 is installed OR libstorage-ruby-2.25.16.1-3.1 is installed OR libstorage5-2.25.16.1-3.1 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102.1 is installed OR libopenssl0_9_8-0.9.8j-102.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND Package Information ctdb-4.2.4-18.30 is installed OR samba-4.2.4-18.30 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-28.3 is installed OR samba-4.2.4-28.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information libpacemaker3-1.1.15-21 is installed OR pacemaker-1.1.15-21 is installed OR pacemaker-cli-1.1.15-21 is installed OR pacemaker-cts-1.1.15-21 is installed OR pacemaker-remote-1.1.15-21 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND Package Information cluster-md-kmp-default-4.12.14-120 is installed OR dlm-kmp-default-4.12.14-120 is installed OR gfs2-kmp-default-4.12.14-120 is installed OR ocfs2-kmp-default-4.12.14-120 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-38.13 is installed OR aaa_base-extras-13.2+git20140911.61c1681-38.13 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_49-11-default-5-14 is installed OR kgraft-patch-3_12_49-11-xen-5-14 is installed OR kgraft-patch-SLE12-SP1_Update_0-5-14 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information cluster-md-kmp-rt-4.4.74-7.10.1 is installed OR cluster-network-kmp-rt-4.4.74-7.10.1 is installed OR dlm-kmp-rt-4.4.74-7.10.1 is installed OR gfs2-kmp-rt-4.4.74-7.10.1 is installed OR kernel-devel-rt-4.4.74-7.10.1 is installed OR kernel-rt-4.4.74-7.10.1 is installed OR kernel-rt-base-4.4.74-7.10.1 is installed OR kernel-rt-devel-4.4.74-7.10.1 is installed OR kernel-rt_debug-4.4.74-7.10.1 is installed OR kernel-rt_debug-devel-4.4.74-7.10.1 is installed OR kernel-source-rt-4.4.74-7.10.1 is installed OR kernel-syms-rt-4.4.74-7.10.1 is installed OR ocfs2-kmp-rt-4.4.74-7.10.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information libpython2_6-1_0-2.6.9-0.31.1 is installed OR libpython2_6-1_0-32bit-2.6.9-0.31.1 is installed OR python-2.6.9-0.31.1 is installed OR python-32bit-2.6.9-0.31.1 is installed OR python-base-2.6.9-0.31.1 is installed OR python-base-32bit-2.6.9-0.31.1 is installed OR python-curses-2.6.9-0.31.1 is installed OR python-demo-2.6.9-0.31.1 is installed OR python-devel-2.6.9-0.31.1 is installed OR python-doc-2.6-8.31.1 is installed OR python-doc-pdf-2.6-8.31.1 is installed OR python-gdbm-2.6.9-0.31.1 is installed OR python-idle-2.6.9-0.31.1 is installed OR python-tk-2.6.9-0.31.1 is installed OR python-xml-2.6.9-0.31.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND clamav-0.97.3-0.2.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information libxml2-2.7.6-0.44.1 is installed OR libxml2-32bit-2.7.6-0.44.1 is installed OR libxml2-doc-2.7.6-0.44.1 is installed OR libxml2-python-2.7.6-0.44.4 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND libxslt-1.1.24-19.23.1 is installed OR libxslt-32bit-1.1.24-19.23.1 is installed OR libxslt-x86-1.1.24-19.23.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND libxslt-1.1.24-19.23.1 is installed OR libxslt-32bit-1.1.24-19.23.1 is installed OR libxslt-x86-1.1.24-19.23.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND Package Information java-1_7_0-ibm-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-alsa-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-devel-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-jdbc-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-plugin-1.7.0_sr9.60-58.2 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information glibc-2.11.3-17.84.1 is installed OR glibc-32bit-2.11.3-17.84.1 is installed OR glibc-devel-2.11.3-17.84.1 is installed OR glibc-devel-32bit-2.11.3-17.84.1 is installed OR glibc-html-2.11.3-17.84.1 is installed OR glibc-i18ndata-2.11.3-17.84.1 is installed OR glibc-info-2.11.3-17.84.1 is installed OR glibc-locale-2.11.3-17.84.1 is installed OR glibc-locale-32bit-2.11.3-17.84.1 is installed OR glibc-locale-x86-2.11.3-17.84.1 is installed OR glibc-profile-2.11.3-17.84.1 is installed OR glibc-profile-32bit-2.11.3-17.84.1 is installed OR glibc-profile-x86-2.11.3-17.84.1 is installed OR glibc-x86-2.11.3-17.84.1 is installed OR nscd-2.11.3-17.84.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information guestfs-data-1.26.9-1 is installed OR guestfs-tools-1.26.9-1 is installed OR guestfsd-1.26.9-1 is installed OR libguestfs0-1.26.9-1 is installed OR perl-Sys-Guestfs-1.26.9-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND pam_yubico-2.26-1 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND cryptctl-1.2.6-5.3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information krb5-devel-1.6.3-133.49.62.1 is installed OR krb5-devel-32bit-1.6.3-133.49.62.1 is installed OR krb5-server-1.6.3-133.49.62.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND automake-1.10.1-4.131.9.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information firebird-devel-2.5.2.26539-13 is installed OR libfbembed-devel-2.5.2.26539-13 is installed OR libfbembed2_5-2.5.2.26539-13 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND NetworkManager-devel-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.406-1 is installed OR flash-player-gnome-11.2.202.406-1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information freerdp-2.0.0~git.1463131968.4e66df7-11 is installed OR libfreerdp2-2.0.0~git.1463131968.4e66df7-11 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed
BACK