Oval Definition:	oval:org.opensuse.security:def:58871
Revision Date: 2021-11-23 Version: 1 Title: Security update for java-1_8_0-openjdk (Important) Description: This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). Family: unix Class: patch Status: Reference(s): 1016715 1028842 1040202 1055857 1059893 1062063 1066644 1068032 1068613 1070144 1071228 1071459 1071460 1073489 1076114 1076179 1076775 1076814 1082276 1083291 1085598 1097356 1103098 1104826 1120943 1122292 1122293 1122299 1124729 1124734 1128378 1128481 1130324 1132728 1132729 1132732 1133135 1136570 1141780 1141782 1141783 1141785 1141787 1141789 1147021 1160770 1171475 1171847 1172105 1172116 1172121 1173991 1174284 1175686 1191901 1191903 1191904 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 CVE-2006-4484 CVE-2013-2003 CVE-2014-3566 CVE-2015-7236 CVE-2016-4975 CVE-2016-6328 CVE-2016-8743 CVE-2017-15119 CVE-2017-15124 CVE-2017-16548 CVE-2017-16845 CVE-2017-17381 CVE-2017-17433 CVE-2017-17434 CVE-2017-18030 CVE-2017-18043 CVE-2017-5715 CVE-2017-7544 CVE-2017-8779 CVE-2018-11212 CVE-2018-20030 CVE-2018-3639 CVE-2018-5391 CVE-2018-5683 CVE-2018-5848 CVE-2018-7550 CVE-2019-11771 CVE-2019-11772 CVE-2019-11775 CVE-2019-2422 CVE-2019-2426 CVE-2019-2449 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-3860 CVE-2019-4473 CVE-2019-6974 CVE-2019-7221 CVE-2019-7317 CVE-2019-9213 CVE-2019-9278 CVE-2019-9924 CVE-2020-0093 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 SUSE-SU-2018:0118-1 SUSE-SU-2018:0831-1 SUSE-SU-2019:0722-1 SUSE-SU-2019:0838-2 SUSE-SU-2019:1219-1 SUSE-SU-2019:2371-1 SUSE-SU-2020:2544-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libpolkit0-0.114-lp150.1 is installed OR polkit-0.114-lp150.1 is installed OR typelib-1_0-Polkit-1_0-0.114-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND haproxy-2.0.10+git0.ac198b92-lp151.2.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information qemu-2.6.2-41.37 is installed OR qemu-arm-2.6.2-41.37 is installed OR qemu-block-curl-2.6.2-41.37 is installed OR qemu-block-rbd-2.6.2-41.37 is installed OR qemu-block-ssh-2.6.2-41.37 is installed OR qemu-guest-agent-2.6.2-41.37 is installed OR qemu-ipxe-1.0.0-41.37 is installed OR qemu-kvm-2.6.2-41.37 is installed OR qemu-lang-2.6.2-41.37 is installed OR qemu-ppc-2.6.2-41.37 is installed OR qemu-s390-2.6.2-41.37 is installed OR qemu-seabios-1.9.1-41.37 is installed OR qemu-sgabios-8-41.37 is installed OR qemu-tools-2.6.2-41.37 is installed OR qemu-vgabios-1.9.1-41.37 is installed OR qemu-x86-2.6.2-41.37 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information bash-4.3-83.23 is installed OR bash-doc-4.3-83.23 is installed OR libreadline6-6.3-83.23 is installed OR libreadline6-32bit-6.3-83.23 is installed OR readline-doc-6.3-83.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112a-13.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_8_0-openjdk-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-demo-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-devel-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-headless-1.8.0.312-27.66.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.8.0-109.119 is installed OR MozillaFirefox-translations-common-68.8.0-109.119 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information mariadb-10.2.32-3.28 is installed OR mariadb-galera-10.2.32-3.28 is installed
BACK