Oval Definition:oval:org.opensuse.security:def:58932
Revision Date:2022-01-04Version:1
Title:Security update for java-1_8_0-ibm (Important) (in QA)
Description:

This update for java-1_8_0-ibm fixes the following issues:

- Update to Java 8.0 Service Refresh 7 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. (bsc#1194198, bsc#1192052) - CVE-2021-35586: Excessive memory allocation in BMPImageReader. (bsc#1191914) - CVE-2021-35564: Certificates with end dates too far in the future can corrupt keystore. (bsc#1191913) - CVE-2021-35559: Excessive memory allocation in RTFReader. (bsc#1191911) - CVE-2021-35556: Excessive memory allocation in RTFParser. (bsc#1191910) - CVE-2021-35565: Loop in HttpsServer triggered during TLS session close. (bsc#1191909) - CVE-2021-35588: Incomplete validation of inner class references in ClassFileParser. (bsc#1191905) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) - CVE-2021-2369: JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2163: Incomplete enforcement of JAR signing disabled algorithms. (bsc#1185055) - CVE-2021-35560: Fixed a vulnerability in the component Deployment. (bsc#1191902) - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake. (bsc#1191904)

This patch is currently in QA and not yet available for download.
Family:unixClass:patch
Status:Reference(s):1027519
1072834
1074562
1080635
1080662
1083247
1087251
1097356
1101820
1102680
1119947
1123886
1130103
1133037
1133528
1137832
1141619
1151021
1160594
1160764
1161779
1162002
1163922
1170383
1171189
1171191
1171220
1171732
1171988
1172049
1172140
1172437
1172453
1172458
1172775
1172781
1172782
1172783
1172999
1174115
1174157
1174462
1174543
1175259
1185055
1188564
1188565
1191902
1191904
1191905
1191909
1191910
1191911
1191913
1191914
1192052
1194198
1194232
CVE-2014-4607
CVE-2014-9622
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
CVE-2018-0486
CVE-2018-0489
CVE-2018-10903
CVE-2018-14574
CVE-2018-16884
CVE-2018-5848
CVE-2018-7540
CVE-2018-7541
CVE-2019-1010006
CVE-2019-11459
CVE-2019-12749
CVE-2019-14835
CVE-2019-15666
CVE-2019-17639
CVE-2019-20810
CVE-2019-20812
CVE-2019-3859
CVE-2020-0305
CVE-2020-10135
CVE-2020-10711
CVE-2020-10732
CVE-2020-10751
CVE-2020-10757
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10773
CVE-2020-12771
CVE-2020-13974
CVE-2020-14416
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-8013
CVE-2021-2163
CVE-2021-2341
CVE-2021-2369
CVE-2021-35556
CVE-2021-35559
CVE-2021-35560
CVE-2021-35564
CVE-2021-35565
CVE-2021-35578
CVE-2021-35586
CVE-2021-35588
CVE-2021-41035
SUSE-SU-2018:0720-1
SUSE-SU-2018:0909-1
SUSE-SU-2018:3549-1
SUSE-SU-2018:3553-1
SUSE-SU-2019:1060-1
SUSE-SU-2019:1591-1
SUSE-SU-2019:2080-1
SUSE-SU-2020:0545-1
SUSE-SU-2020:2134-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND mosh-1.3.2-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • ovmf-2017+git1510945757.b2662641d5-lp151.11.6 is installed
  • OR ovmf-tools-2017+git1510945757.b2662641d5-lp151.11.6 is installed
  • OR qemu-ovmf-ia32-2017+git1510945757.b2662641d5-lp151.11.6 is installed
  • OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-lp151.11.6 is installed
  • OR qemu-ovmf-x86_64-debug-2017+git1510945757.b2662641d5-lp151.11.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libxmltooling6-1.5.6-3.6 is installed
  • OR xmltooling-1.5.6-3.6 is installed
  • OR xmltooling-schemas-1.5.6-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.138 is installed
  • OR kernel-default-base-4.4.121-92.138 is installed
  • OR kernel-default-devel-4.4.121-92.138 is installed
  • OR kernel-devel-4.4.121-92.138 is installed
  • OR kernel-macros-4.4.121-92.138 is installed
  • OR kernel-source-4.4.121-92.138 is installed
  • OR kernel-syms-4.4.121-92.138 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_64-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_18-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.6 is installed
  • OR libssh2-1-32bit-1.4.3-20.6 is installed
  • OR libssh2_org-1.4.3-20.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • liblzo2-2-2.08-1 is installed
  • OR liblzo2-2-32bit-2.08-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.68 is installed
  • OR libgcrypt20-1.6.1-16.68 is installed
  • OR libgcrypt20-32bit-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND gdb-8.3.1-2.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr7.0-30.84.1 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr7.0-30.84.1 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr7.0-30.84.1 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr7.0-30.84.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • file-5.22-10.6 is installed
  • OR file-magic-5.22-10.6 is installed
  • OR libmagic1-5.22-10.6 is installed
  • OR libmagic1-32bit-5.22-10.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-cryptography-2.0.3-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • crowbar-core-5.0+git.1569597589.1f025c557-3.32 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1569597589.1f025c557-3.32 is installed
  • OR crowbar-ha-5.0+git.1567673535.607aada-3.26 is installed
  • OR crowbar-openstack-5.0+git.1570141351.058c8bd44-4.31 is installed
  • OR crowbar-ui-1.2.0+git.1568396400.0344a727-3.12 is installed
  • OR galera-3-25.3.25-4.6 is installed
  • OR galera-3-wsrep-provider-25.3.25-4.6 is installed
  • OR grafana-4.6.5-4.6 is installed
  • OR libmariadb3-3.1.2-3.12 is installed
  • OR mariadb-10.2.25-4.14 is installed
  • OR mariadb-client-10.2.25-4.14 is installed
  • OR mariadb-connector-c-3.1.2-3.12 is installed
  • OR mariadb-errormessages-10.2.25-4.14 is installed
  • OR mariadb-galera-10.2.25-4.14 is installed
  • OR mariadb-tools-10.2.25-4.14 is installed
  • OR novnc-1.0.0-3.6 is installed
  • OR openstack-cinder-11.2.3~dev16-3.21 is installed
  • OR openstack-cinder-api-11.2.3~dev16-3.21 is installed
  • OR openstack-cinder-backup-11.2.3~dev16-3.21 is installed
  • OR openstack-cinder-doc-11.2.3~dev16-3.21 is installed
  • OR openstack-cinder-scheduler-11.2.3~dev16-3.21 is installed
  • OR openstack-cinder-volume-11.2.3~dev16-3.21 is installed
  • OR openstack-glance-15.0.3~dev3-3.12 is installed
  • OR openstack-glance-api-15.0.3~dev3-3.12 is installed
  • OR openstack-glance-doc-15.0.3~dev3-3.12 is installed
  • OR openstack-glance-registry-15.0.3~dev3-3.12 is installed
  • OR openstack-heat-9.0.8~dev13-3.24 is installed
  • OR openstack-heat-api-9.0.8~dev13-3.24 is installed
  • OR openstack-heat-api-cfn-9.0.8~dev13-3.24 is installed
  • OR openstack-heat-api-cloudwatch-9.0.8~dev13-3.24 is installed
  • OR openstack-heat-doc-9.0.8~dev13-3.24 is installed
  • OR openstack-heat-engine-9.0.8~dev13-3.24 is installed
  • OR openstack-heat-plugin-heat_docker-9.0.8~dev13-3.24 is installed
  • OR openstack-heat-test-9.0.8~dev13-3.24 is installed
  • OR openstack-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed
  • OR openstack-keystone-12.0.4~dev4-5.27 is installed
  • OR openstack-keystone-doc-12.0.4~dev4-5.27 is installed
  • OR openstack-monasca-installer-20190923_16.32-3.9 is installed
  • OR openstack-neutron-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-dhcp-agent-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-doc-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-gbp-7.3.1~dev56-3.9 is installed
  • OR openstack-neutron-ha-tool-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-l3-agent-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-lbaas-11.0.4~dev6-3.15 is installed
  • OR openstack-neutron-lbaas-agent-11.0.4~dev6-3.15 is installed
  • OR openstack-neutron-lbaas-doc-11.0.4~dev6-3.15 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-macvtap-agent-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-metadata-agent-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-metering-agent-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.9~dev51-3.24 is installed
  • OR openstack-neutron-server-11.0.9~dev51-3.24 is installed
  • OR openstack-nova-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-api-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-cells-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-compute-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-conductor-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-console-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-consoleauth-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-doc-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-novncproxy-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-placement-api-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-scheduler-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-serialproxy-16.1.9~dev7-3.29 is installed
  • OR openstack-nova-vncproxy-16.1.9~dev7-3.29 is installed
  • OR python-amqp-2.2.2-3.6 is installed
  • OR python-cinder-11.2.3~dev16-3.21 is installed
  • OR python-glance-15.0.3~dev3-3.12 is installed
  • OR python-heat-9.0.8~dev13-3.24 is installed
  • OR python-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed
  • OR python-keystone-12.0.4~dev4-5.27 is installed
  • OR python-neutron-11.0.9~dev51-3.24 is installed
  • OR python-neutron-gbp-7.3.1~dev56-3.9 is installed
  • OR python-neutron-lbaas-11.0.4~dev6-3.15 is installed
  • OR python-nova-16.1.9~dev7-3.29 is installed
  • OR python-ovs-2.7.2-3.6 is installed
  • OR python-pysaml2-4.0.2-5.3 is installed
  • OR python-urllib3-1.22-5.9 is installed
  • OR release-notes-suse-openstack-cloud-8.20190911-3.20 is installed
  • OR ruby2.1-rubygem-easy_diff-1.0.0-3.4 is installed
  • OR rubygem-easy_diff-1.0.0-3.4 is installed
    • BACK