Oval Definition:oval:org.opensuse.security:def:59825
Revision Date:2021-11-23Version:1
Title:Security update for java-1_8_0-openjdk (Important)
Description:

This update for java-1_8_0-openjdk fixes the following issues:

Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).
Family:unixClass:patch
Status:Reference(s):1000396
1001299
1025068
1027519
1049825
1061343
1086039
1086247
1089152
1089635
1090820
1090822
1090823
1094717
1101428
1101566
1101567
1101568
1101569
1101570
1101571
1101573
1101576
1101577
1101578
1101581
1101582
1101583
1101588
1101589
1103098
1109893
1110542
1111319
1112911
1113296
1116995
1120629
1120630
1120631
1123886
1127155
1131361
1131823
1133191
1134226
1136446
1136935
1137597
1137977
1140039
1141780
1141782
1141783
1141785
1141789
1144902
1145521
1147021
1160594
1160764
1161779
1163922
1166844
1172515
1173991
1174284
1175686
1176315
1191901
1191903
1191904
1191905
1191906
1191909
1191910
1191911
1191912
1191913
1191914
980830
982129
986534
CVE-2009-0037
CVE-2009-2417
CVE-2012-0862
CVE-2013-0249
CVE-2013-1944
CVE-2013-2174
CVE-2013-4342
CVE-2013-4545
CVE-2014-0015
CVE-2014-0138
CVE-2014-0139
CVE-2014-3613
CVE-2014-3620
CVE-2014-3707
CVE-2014-8150
CVE-2014-9116
CVE-2015-3143
CVE-2015-3144
CVE-2015-3145
CVE-2015-3148
CVE-2015-3153
CVE-2016-0634
CVE-2016-0755
CVE-2016-5419
CVE-2016-5420
CVE-2016-5421
CVE-2016-7141
CVE-2016-7167
CVE-2016-7543
CVE-2016-8615
CVE-2016-8616
CVE-2016-8617
CVE-2016-8618
CVE-2016-8619
CVE-2016-8620
CVE-2016-8621
CVE-2016-8622
CVE-2016-8623
CVE-2016-8624
CVE-2016-9586
CVE-2017-2626
CVE-2017-5754
CVE-2017-7407
CVE-2018-10471
CVE-2018-10472
CVE-2018-14349
CVE-2018-14350
CVE-2018-14351
CVE-2018-14352
CVE-2018-14353
CVE-2018-14354
CVE-2018-14355
CVE-2018-14356
CVE-2018-14357
CVE-2018-14358
CVE-2018-14359
CVE-2018-14360
CVE-2018-14361
CVE-2018-14362
CVE-2018-14363
CVE-2018-20532
CVE-2018-20533
CVE-2018-20534
CVE-2018-5391
CVE-2018-8897
CVE-2019-0161
CVE-2019-10218
CVE-2019-11477
CVE-2019-11478
CVE-2019-11487
CVE-2019-11771
CVE-2019-11775
CVE-2019-2762
CVE-2019-2766
CVE-2019-2769
CVE-2019-2816
CVE-2019-3846
CVE-2019-4473
CVE-2019-7317
CVE-2020-10531
CVE-2020-15663
CVE-2020-15664
CVE-2020-15670
CVE-2020-17507
CVE-2020-8013
CVE-2021-35550
CVE-2021-35556
CVE-2021-35559
CVE-2021-35561
CVE-2021-35564
CVE-2021-35565
CVE-2021-35567
CVE-2021-35578
CVE-2021-35586
CVE-2021-35588
CVE-2021-35603
SUSE-SU-2018:0337-1
SUSE-SU-2018:1398-1
SUSE-SU-2019:1196-1
SUSE-SU-2019:1204-1
SUSE-SU-2019:2336-1
SUSE-SU-2020:0545-1
SUSE-SU-2020:2544-1
SUSE-SU-2021:3771-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • groff-1.22.3-lp150.3 is installed
  • OR groff-full-1.22.3-lp150.3 is installed
  • OR gxditview-1.22.3-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • neovim-0.3.7-lp151.2.7 is installed
  • OR neovim-lang-0.3.7-lp151.2.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_80-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • curl-7.37.0-36 is installed
  • OR libcurl4-7.37.0-36 is installed
  • OR libcurl4-32bit-7.37.0-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND squid-3.5.21-26.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_113-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_30-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libsoup-2.62.2-5.7 is installed
  • OR libsoup-2_4-1-2.62.2-5.7 is installed
  • OR libsoup-2_4-1-32bit-2.62.2-5.7 is installed
  • OR libsoup-lang-2.62.2-5.7 is installed
  • OR typelib-1_0-Soup-2_4-2.62.2-5.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • freeradius-server-3.0.15-2.8 is installed
  • OR freeradius-server-doc-3.0.15-2.8 is installed
  • OR freeradius-server-krb5-3.0.15-2.8 is installed
  • OR freeradius-server-ldap-3.0.15-2.8 is installed
  • OR freeradius-server-libs-3.0.15-2.8 is installed
  • OR freeradius-server-mysql-3.0.15-2.8 is installed
  • OR freeradius-server-perl-3.0.15-2.8 is installed
  • OR freeradius-server-postgresql-3.0.15-2.8 is installed
  • OR freeradius-server-python-3.0.15-2.8 is installed
  • OR freeradius-server-sqlite-3.0.15-2.8 is installed
  • OR freeradius-server-utils-3.0.15-2.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.312-27.66.1 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.312-27.66.1 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.312-27.66.1 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.312-27.66.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • MozillaFirefox-78.2.0-112.19 is installed
  • OR MozillaFirefox-devel-78.2.0-112.19 is installed
  • OR MozillaFirefox-translations-common-78.2.0-112.19 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • ardana-ansible-9.0+git.1581611758.f694f7d-3.16 is installed
  • OR ardana-cinder-9.0+git.1579256229.c8b4b38-3.10 is installed
  • OR ardana-cobbler-9.0+git.1574950066.a3c4be4-3.10 is installed
  • OR ardana-db-9.0+git.1578936438.b9a9b95-3.16 is installed
  • OR ardana-horizon-9.0+git.1575562864.8ed5e10-3.13 is installed
  • OR ardana-input-model-9.0+git.1580403439.d425462-3.13 is installed
  • OR ardana-monasca-9.0+git.1579273481.4b8c46f-3.13 is installed
  • OR ardana-mq-9.0+git.1581024903.8e74867-3.10 is installed
  • OR ardana-nova-9.0+git.1580304673.6c668eb-3.16 is installed
  • OR ardana-octavia-9.0+git.1576074489.62de7e2-3.13 is installed
  • OR ardana-osconfig-9.0+git.1580235830.0dca223-3.13 is installed
  • OR ardana-tempest-9.0+git.1578932816.e299c08-3.10 is installed
  • OR ardana-tls-9.0+git.1575296665.3fdfe45-3.9 is installed
  • OR keepalived-2.0.19-3.3 is installed
  • OR openstack-barbican-7.0.1~dev24-3.6 is installed
  • OR openstack-barbican-api-7.0.1~dev24-3.6 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev24-3.6 is installed
  • OR openstack-barbican-retry-7.0.1~dev24-3.6 is installed
  • OR openstack-barbican-worker-7.0.1~dev24-3.6 is installed
  • OR openstack-ceilometer-11.0.2~dev21-3.10 is installed
  • OR openstack-ceilometer-agent-central-11.0.2~dev21-3.10 is installed
  • OR openstack-ceilometer-agent-compute-11.0.2~dev21-3.10 is installed
  • OR openstack-ceilometer-agent-ipmi-11.0.2~dev21-3.10 is installed
  • OR openstack-ceilometer-agent-notification-11.0.2~dev21-3.10 is installed
  • OR openstack-ceilometer-polling-11.0.2~dev21-3.10 is installed
  • OR openstack-cinder-13.0.9~dev11-3.16 is installed
  • OR openstack-cinder-api-13.0.9~dev11-3.16 is installed
  • OR openstack-cinder-backup-13.0.9~dev11-3.16 is installed
  • OR openstack-cinder-scheduler-13.0.9~dev11-3.16 is installed
  • OR openstack-cinder-volume-13.0.9~dev11-3.16 is installed
  • OR openstack-dashboard-14.1.1~dev1-3.12 is installed
  • OR openstack-dashboard-theme-SUSE-2018.2+git.1555335229.5c8dec9-3.3 is installed
  • OR openstack-designate-7.0.1~dev23-3.13 is installed
  • OR openstack-designate-agent-7.0.1~dev23-3.13 is installed
  • OR openstack-designate-api-7.0.1~dev23-3.13 is installed
  • OR openstack-designate-central-7.0.1~dev23-3.13 is installed
  • OR openstack-designate-producer-7.0.1~dev23-3.13 is installed
  • OR openstack-designate-sink-7.0.1~dev23-3.13 is installed
  • OR openstack-designate-worker-7.0.1~dev23-3.13 is installed
  • OR openstack-heat-11.0.3~dev31-3.13 is installed
  • OR openstack-heat-api-11.0.3~dev31-3.13 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev31-3.13 is installed
  • OR openstack-heat-engine-11.0.3~dev31-3.13 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev31-3.13 is installed
  • OR openstack-horizon-plugin-designate-ui-7.0.1~dev8-3.6 is installed
  • OR openstack-horizon-plugin-ironic-ui-3.3.1~dev14-3.3 is installed
  • OR openstack-horizon-plugin-neutron-lbaas-ui-5.0.1~dev8-11 is installed
  • OR openstack-horizon-plugin-octavia-ui-2.0.2~dev1-1.3 is installed
  • OR openstack-ironic-11.1.4~dev22-3.13 is installed
  • OR openstack-ironic-api-11.1.4~dev22-3.13 is installed
  • OR openstack-ironic-conductor-11.1.4~dev22-3.13 is installed
  • OR openstack-ironic-python-agent-3.3.3~dev6-3.13 is installed
  • OR openstack-keystone-14.1.1~dev36-3.19 is installed
  • OR openstack-magnum-7.2.1~dev1-3.10 is installed
  • OR openstack-magnum-api-7.2.1~dev1-3.10 is installed
  • OR openstack-magnum-conductor-7.2.1~dev1-3.10 is installed
  • OR openstack-monasca-agent-2.8.1~dev13-3.6 is installed
  • OR openstack-neutron-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-dhcp-agent-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-fwaas-13.0.3~dev4-3.9 is installed
  • OR openstack-neutron-gbp-5.0.1~dev491-3.16 is installed
  • OR openstack-neutron-ha-tool-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-l3-agent-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-macvtap-agent-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-metadata-agent-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-metering-agent-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-server-13.0.7~dev48-3.19 is installed
  • OR openstack-neutron-vpnaas-13.0.2~dev6-3.6 is installed
  • OR openstack-neutron-vyatta-agent-13.0.2~dev6-3.6 is installed
  • OR openstack-nova-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-api-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-cells-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-compute-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-conductor-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-console-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-placement-api-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-scheduler-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev63-3.19 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev63-3.19 is installed
  • OR openstack-octavia-3.2.2~dev8-3.19 is installed
  • OR openstack-octavia-amphora-agent-3.2.2~dev8-3.19 is installed
  • OR openstack-octavia-amphora-image-0.1.2-7.6 is installed
  • OR openstack-octavia-amphora-image-x86_64-0.1.2-7.6 is installed
  • OR openstack-octavia-api-3.2.2~dev8-3.19 is installed
  • OR openstack-octavia-health-manager-3.2.2~dev8-3.19 is installed
  • OR openstack-octavia-housekeeping-3.2.2~dev8-3.19 is installed
  • OR openstack-octavia-worker-3.2.2~dev8-3.19 is installed
  • OR openstack-sahara-9.0.2~dev15-3.9 is installed
  • OR openstack-sahara-api-9.0.2~dev15-3.9 is installed
  • OR openstack-sahara-engine-9.0.2~dev15-3.9 is installed
  • OR openstack-swift-2.19.2~dev48-3.3 is installed
  • OR openstack-swift-account-2.19.2~dev48-3.3 is installed
  • OR openstack-swift-container-2.19.2~dev48-3.3 is installed
  • OR openstack-swift-object-2.19.2~dev48-3.3 is installed
  • OR openstack-swift-proxy-2.19.2~dev48-3.3 is installed
  • OR python-amqp-2.4.2-4.3 is installed
  • OR python-barbican-7.0.1~dev24-3.6 is installed
  • OR python-ceilometer-11.0.2~dev21-3.10 is installed
  • OR python-cinder-13.0.9~dev11-3.16 is installed
  • OR python-designate-7.0.1~dev23-3.13 is installed
  • OR python-heat-11.0.3~dev31-3.13 is installed
  • OR python-horizon-14.1.1~dev1-3.12 is installed
  • OR python-horizon-plugin-designate-ui-7.0.1~dev8-3.6 is installed
  • OR python-horizon-plugin-ironic-ui-3.3.1~dev14-3.3 is installed
  • OR python-horizon-plugin-neutron-lbaas-ui-5.0.1~dev8-11 is installed
  • OR python-horizon-plugin-octavia-ui-2.0.2~dev1-1.3 is installed
  • OR python-ironic-11.1.4~dev22-3.13 is installed
  • OR python-ironic-lib-2.14.2-3.3 is installed
  • OR python-keystone-14.1.1~dev36-3.19 is installed
  • OR python-keystoneauth1-3.10.1~dev10-3.3 is installed
  • OR python-keystoneclient-3.17.1~dev5-3.3 is installed
  • OR python-keystoneclient-doc-3.17.1~dev5-3.3 is installed
  • OR python-keystonemiddleware-5.2.2~dev3-14 is installed
  • OR python-magnum-7.2.1~dev1-3.10 is installed
  • OR python-monasca-agent-2.8.1~dev13-3.6 is installed
  • OR python-neutron-13.0.7~dev48-3.19 is installed
  • OR python-neutron-fwaas-13.0.3~dev4-3.9 is installed
  • OR python-neutron-gbp-5.0.1~dev491-3.16 is installed
  • OR python-neutron-vpnaas-13.0.2~dev6-3.6 is installed
  • OR python-nova-18.2.4~dev63-3.19 is installed
  • OR python-octavia-3.2.2~dev8-3.19 is installed
  • OR python-openstack_auth-14.1.1~dev1-3.12 is installed
  • OR python-ovs-2.9.0-3.3 is installed
  • OR python-sahara-9.0.2~dev15-3.9 is installed
  • OR python-swift-2.19.2~dev48-3.3 is installed
  • OR supportutils-plugin-suse-openstack-cloud-9.0.1574431436.987b47d-3.6 is installed
  • OR venv-openstack-barbican-7.0.1~dev24-3.15 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev24-3.15 is installed
  • OR venv-openstack-cinder-13.0.9~dev11-3.15 is installed
  • OR venv-openstack-cinder-x86_64-13.0.9~dev11-3.15 is installed
  • OR venv-openstack-designate-7.0.1~dev23-3.15 is installed
  • OR venv-openstack-designate-x86_64-7.0.1~dev23-3.15 is installed
  • OR venv-openstack-glance-17.0.1~dev30-3.13 is installed
  • OR venv-openstack-glance-x86_64-17.0.1~dev30-3.13 is installed
  • OR venv-openstack-heat-11.0.3~dev31-3.15 is installed
  • OR venv-openstack-heat-x86_64-11.0.3~dev31-3.15 is installed
  • OR venv-openstack-horizon-14.1.1~dev1-4.14 is installed
  • OR venv-openstack-horizon-x86_64-14.1.1~dev1-4.14 is installed
  • OR venv-openstack-ironic-11.1.4~dev22-4.11 is installed
  • OR venv-openstack-ironic-x86_64-11.1.4~dev22-4.11 is installed
  • OR venv-openstack-keystone-14.1.1~dev36-3.15 is installed
  • OR venv-openstack-keystone-x86_64-14.1.1~dev36-3.15 is installed
  • OR venv-openstack-magnum-7.2.1~dev1-4.15 is installed
  • OR venv-openstack-magnum-x86_64-7.2.1~dev1-4.15 is installed
  • OR venv-openstack-manila-7.3.1~dev15-3.15 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev15-3.15 is installed
  • OR venv-openstack-monasca-2.7.1~dev10-3.13 is installed
  • OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.15 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.15 is installed
  • OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.13 is installed
  • OR venv-openstack-neutron-13.0.7~dev48-6.15 is installed
  • OR venv-openstack-neutron-x86_64-13.0.7~dev48-6.15 is installed
  • OR venv-openstack-nova-18.2.4~dev63-3.15 is installed
  • OR venv-openstack-nova-x86_64-18.2.4~dev63-3.15 is installed
  • OR venv-openstack-octavia-3.2.2~dev8-4.15 is installed
  • OR venv-openstack-octavia-x86_64-3.2.2~dev8-4.15 is installed
  • OR venv-openstack-sahara-9.0.2~dev15-3.15 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev15-3.15 is installed
  • OR venv-openstack-swift-2.19.2~dev48-2.10 is installed
  • OR venv-openstack-swift-x86_64-2.19.2~dev48-2.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND golang-github-prometheus-node_exporter-0.18.1-1.6 is installed
    • BACK