OVAL Reference oval:org.opensuse.security:def:59825

Oval Definition:

oval:org.opensuse.security:def:59825

Revision Date:	2021-11-23	Version:	1
Title:	Security update for java-1_8_0-openjdk (Important)
Description:	This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).
Family:	unix	Class:	patch
Status:		Reference(s):	1000396 1001299 1025068 1027519 1049825 1061343 1086039 1086247 1089152 1089635 1090820 1090822 1090823 1094717 1101428 1101566 1101567 1101568 1101569 1101570 1101571 1101573 1101576 1101577 1101578 1101581 1101582 1101583 1101588 1101589 1103098 1109893 1110542 1111319 1112911 1113296 1116995 1120629 1120630 1120631 1123886 1127155 1131361 1131823 1133191 1134226 1136446 1136935 1137597 1137977 1140039 1141780 1141782 1141783 1141785 1141789 1144902 1145521 1147021 1160594 1160764 1161779 1163922 1166844 1172515 1173991 1174284 1175686 1176315 1191901 1191903 1191904 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 980830 982129 986534 CVE-2009-0037 CVE-2009-2417 CVE-2012-0862 CVE-2013-0249 CVE-2013-1944 CVE-2013-2174 CVE-2013-4342 CVE-2013-4545 CVE-2014-0015 CVE-2014-0138 CVE-2014-0139 CVE-2014-3613 CVE-2014-3620 CVE-2014-3707 CVE-2014-8150 CVE-2014-9116 CVE-2015-3143 CVE-2015-3144 CVE-2015-3145 CVE-2015-3148 CVE-2015-3153 CVE-2016-0634 CVE-2016-0755 CVE-2016-5419 CVE-2016-5420 CVE-2016-5421 CVE-2016-7141 CVE-2016-7167 CVE-2016-7543 CVE-2016-8615 CVE-2016-8616 CVE-2016-8617 CVE-2016-8618 CVE-2016-8619 CVE-2016-8620 CVE-2016-8621 CVE-2016-8622 CVE-2016-8623 CVE-2016-8624 CVE-2016-9586 CVE-2017-2626 CVE-2017-5754 CVE-2017-7407 CVE-2018-10471 CVE-2018-10472 CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352 CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356 CVE-2018-14357 CVE-2018-14358 CVE-2018-14359 CVE-2018-14360 CVE-2018-14361 CVE-2018-14362 CVE-2018-14363 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-5391 CVE-2018-8897 CVE-2019-0161 CVE-2019-10218 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-11771 CVE-2019-11775 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2816 CVE-2019-3846 CVE-2019-4473 CVE-2019-7317 CVE-2020-10531 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-17507 CVE-2020-8013 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 SUSE-SU-2018:0337-1 SUSE-SU-2018:1398-1 SUSE-SU-2019:1196-1 SUSE-SU-2019:1204-1 SUSE-SU-2019:2336-1 SUSE-SU-2020:0545-1 SUSE-SU-2020:2544-1 SUSE-SU-2021:3771-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information groff-1.22.3-lp150.3 is installed OR groff-full-1.22.3-lp150.3 is installed OR gxditview-1.22.3-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information neovim-0.3.7-lp151.2.7 is installed OR neovim-lang-0.3.7-lp151.2.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_113-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_30-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsoup-2.62.2-5.7 is installed OR libsoup-2_4-1-2.62.2-5.7 is installed OR libsoup-2_4-1-32bit-2.62.2-5.7 is installed OR libsoup-lang-2.62.2-5.7 is installed OR typelib-1_0-Soup-2_4-2.62.2-5.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information freeradius-server-3.0.15-2.8 is installed OR freeradius-server-doc-3.0.15-2.8 is installed OR freeradius-server-krb5-3.0.15-2.8 is installed OR freeradius-server-ldap-3.0.15-2.8 is installed OR freeradius-server-libs-3.0.15-2.8 is installed OR freeradius-server-mysql-3.0.15-2.8 is installed OR freeradius-server-perl-3.0.15-2.8 is installed OR freeradius-server-postgresql-3.0.15-2.8 is installed OR freeradius-server-python-3.0.15-2.8 is installed OR freeradius-server-sqlite-3.0.15-2.8 is installed OR freeradius-server-utils-3.0.15-2.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-demo-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-devel-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-headless-1.8.0.312-27.66.1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-78.2.0-112.19 is installed OR MozillaFirefox-devel-78.2.0-112.19 is installed OR MozillaFirefox-translations-common-78.2.0-112.19 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1581611758.f694f7d-3.16 is installed OR ardana-cinder-9.0+git.1579256229.c8b4b38-3.10 is installed OR ardana-cobbler-9.0+git.1574950066.a3c4be4-3.10 is installed OR ardana-db-9.0+git.1578936438.b9a9b95-3.16 is installed OR ardana-horizon-9.0+git.1575562864.8ed5e10-3.13 is installed OR ardana-input-model-9.0+git.1580403439.d425462-3.13 is installed OR ardana-monasca-9.0+git.1579273481.4b8c46f-3.13 is installed OR ardana-mq-9.0+git.1581024903.8e74867-3.10 is installed OR ardana-nova-9.0+git.1580304673.6c668eb-3.16 is installed OR ardana-octavia-9.0+git.1576074489.62de7e2-3.13 is installed OR ardana-osconfig-9.0+git.1580235830.0dca223-3.13 is installed OR ardana-tempest-9.0+git.1578932816.e299c08-3.10 is installed OR ardana-tls-9.0+git.1575296665.3fdfe45-3.9 is installed OR keepalived-2.0.19-3.3 is installed OR openstack-barbican-7.0.1~dev24-3.6 is installed OR openstack-barbican-api-7.0.1~dev24-3.6 is installed OR openstack-barbican-keystone-listener-7.0.1~dev24-3.6 is installed OR openstack-barbican-retry-7.0.1~dev24-3.6 is installed OR openstack-barbican-worker-7.0.1~dev24-3.6 is installed OR openstack-ceilometer-11.0.2~dev21-3.10 is installed OR openstack-ceilometer-agent-central-11.0.2~dev21-3.10 is installed OR openstack-ceilometer-agent-compute-11.0.2~dev21-3.10 is installed OR openstack-ceilometer-agent-ipmi-11.0.2~dev21-3.10 is installed OR openstack-ceilometer-agent-notification-11.0.2~dev21-3.10 is installed OR openstack-ceilometer-polling-11.0.2~dev21-3.10 is installed OR openstack-cinder-13.0.9~dev11-3.16 is installed OR openstack-cinder-api-13.0.9~dev11-3.16 is installed OR openstack-cinder-backup-13.0.9~dev11-3.16 is installed OR openstack-cinder-scheduler-13.0.9~dev11-3.16 is installed OR openstack-cinder-volume-13.0.9~dev11-3.16 is installed OR openstack-dashboard-14.1.1~dev1-3.12 is installed OR openstack-dashboard-theme-SUSE-2018.2+git.1555335229.5c8dec9-3.3 is installed OR openstack-designate-7.0.1~dev23-3.13 is installed OR openstack-designate-agent-7.0.1~dev23-3.13 is installed OR openstack-designate-api-7.0.1~dev23-3.13 is installed OR openstack-designate-central-7.0.1~dev23-3.13 is installed OR openstack-designate-producer-7.0.1~dev23-3.13 is installed OR openstack-designate-sink-7.0.1~dev23-3.13 is installed OR openstack-designate-worker-7.0.1~dev23-3.13 is installed OR openstack-heat-11.0.3~dev31-3.13 is installed OR openstack-heat-api-11.0.3~dev31-3.13 is installed OR openstack-heat-api-cfn-11.0.3~dev31-3.13 is installed OR openstack-heat-engine-11.0.3~dev31-3.13 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev31-3.13 is installed OR openstack-horizon-plugin-designate-ui-7.0.1~dev8-3.6 is installed OR openstack-horizon-plugin-ironic-ui-3.3.1~dev14-3.3 is installed OR openstack-horizon-plugin-neutron-lbaas-ui-5.0.1~dev8-11 is installed OR openstack-horizon-plugin-octavia-ui-2.0.2~dev1-1.3 is installed OR openstack-ironic-11.1.4~dev22-3.13 is installed OR openstack-ironic-api-11.1.4~dev22-3.13 is installed OR openstack-ironic-conductor-11.1.4~dev22-3.13 is installed OR openstack-ironic-python-agent-3.3.3~dev6-3.13 is installed OR openstack-keystone-14.1.1~dev36-3.19 is installed OR openstack-magnum-7.2.1~dev1-3.10 is installed OR openstack-magnum-api-7.2.1~dev1-3.10 is installed OR openstack-magnum-conductor-7.2.1~dev1-3.10 is installed OR openstack-monasca-agent-2.8.1~dev13-3.6 is installed OR openstack-neutron-13.0.7~dev48-3.19 is installed OR openstack-neutron-dhcp-agent-13.0.7~dev48-3.19 is installed OR openstack-neutron-fwaas-13.0.3~dev4-3.9 is installed OR openstack-neutron-gbp-5.0.1~dev491-3.16 is installed OR openstack-neutron-ha-tool-13.0.7~dev48-3.19 is installed OR openstack-neutron-l3-agent-13.0.7~dev48-3.19 is installed OR openstack-neutron-linuxbridge-agent-13.0.7~dev48-3.19 is installed OR openstack-neutron-macvtap-agent-13.0.7~dev48-3.19 is installed OR openstack-neutron-metadata-agent-13.0.7~dev48-3.19 is installed OR openstack-neutron-metering-agent-13.0.7~dev48-3.19 is installed OR openstack-neutron-openvswitch-agent-13.0.7~dev48-3.19 is installed OR openstack-neutron-server-13.0.7~dev48-3.19 is installed OR openstack-neutron-vpnaas-13.0.2~dev6-3.6 is installed OR openstack-neutron-vyatta-agent-13.0.2~dev6-3.6 is installed OR openstack-nova-18.2.4~dev63-3.19 is installed OR openstack-nova-api-18.2.4~dev63-3.19 is installed OR openstack-nova-cells-18.2.4~dev63-3.19 is installed OR openstack-nova-compute-18.2.4~dev63-3.19 is installed OR openstack-nova-conductor-18.2.4~dev63-3.19 is installed OR openstack-nova-console-18.2.4~dev63-3.19 is installed OR openstack-nova-novncproxy-18.2.4~dev63-3.19 is installed OR openstack-nova-placement-api-18.2.4~dev63-3.19 is installed OR openstack-nova-scheduler-18.2.4~dev63-3.19 is installed OR openstack-nova-serialproxy-18.2.4~dev63-3.19 is installed OR openstack-nova-vncproxy-18.2.4~dev63-3.19 is installed OR openstack-octavia-3.2.2~dev8-3.19 is installed OR openstack-octavia-amphora-agent-3.2.2~dev8-3.19 is installed OR openstack-octavia-amphora-image-0.1.2-7.6 is installed OR openstack-octavia-amphora-image-x86_64-0.1.2-7.6 is installed OR openstack-octavia-api-3.2.2~dev8-3.19 is installed OR openstack-octavia-health-manager-3.2.2~dev8-3.19 is installed OR openstack-octavia-housekeeping-3.2.2~dev8-3.19 is installed OR openstack-octavia-worker-3.2.2~dev8-3.19 is installed OR openstack-sahara-9.0.2~dev15-3.9 is installed OR openstack-sahara-api-9.0.2~dev15-3.9 is installed OR openstack-sahara-engine-9.0.2~dev15-3.9 is installed OR openstack-swift-2.19.2~dev48-3.3 is installed OR openstack-swift-account-2.19.2~dev48-3.3 is installed OR openstack-swift-container-2.19.2~dev48-3.3 is installed OR openstack-swift-object-2.19.2~dev48-3.3 is installed OR openstack-swift-proxy-2.19.2~dev48-3.3 is installed OR python-amqp-2.4.2-4.3 is installed OR python-barbican-7.0.1~dev24-3.6 is installed OR python-ceilometer-11.0.2~dev21-3.10 is installed OR python-cinder-13.0.9~dev11-3.16 is installed OR python-designate-7.0.1~dev23-3.13 is installed OR python-heat-11.0.3~dev31-3.13 is installed OR python-horizon-14.1.1~dev1-3.12 is installed OR python-horizon-plugin-designate-ui-7.0.1~dev8-3.6 is installed OR python-horizon-plugin-ironic-ui-3.3.1~dev14-3.3 is installed OR python-horizon-plugin-neutron-lbaas-ui-5.0.1~dev8-11 is installed OR python-horizon-plugin-octavia-ui-2.0.2~dev1-1.3 is installed OR python-ironic-11.1.4~dev22-3.13 is installed OR python-ironic-lib-2.14.2-3.3 is installed OR python-keystone-14.1.1~dev36-3.19 is installed OR python-keystoneauth1-3.10.1~dev10-3.3 is installed OR python-keystoneclient-3.17.1~dev5-3.3 is installed OR python-keystoneclient-doc-3.17.1~dev5-3.3 is installed OR python-keystonemiddleware-5.2.2~dev3-14 is installed OR python-magnum-7.2.1~dev1-3.10 is installed OR python-monasca-agent-2.8.1~dev13-3.6 is installed OR python-neutron-13.0.7~dev48-3.19 is installed OR python-neutron-fwaas-13.0.3~dev4-3.9 is installed OR python-neutron-gbp-5.0.1~dev491-3.16 is installed OR python-neutron-vpnaas-13.0.2~dev6-3.6 is installed OR python-nova-18.2.4~dev63-3.19 is installed OR python-octavia-3.2.2~dev8-3.19 is installed OR python-openstack_auth-14.1.1~dev1-3.12 is installed OR python-ovs-2.9.0-3.3 is installed OR python-sahara-9.0.2~dev15-3.9 is installed OR python-swift-2.19.2~dev48-3.3 is installed OR supportutils-plugin-suse-openstack-cloud-9.0.1574431436.987b47d-3.6 is installed OR venv-openstack-barbican-7.0.1~dev24-3.15 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev24-3.15 is installed OR venv-openstack-cinder-13.0.9~dev11-3.15 is installed OR venv-openstack-cinder-x86_64-13.0.9~dev11-3.15 is installed OR venv-openstack-designate-7.0.1~dev23-3.15 is installed OR venv-openstack-designate-x86_64-7.0.1~dev23-3.15 is installed OR venv-openstack-glance-17.0.1~dev30-3.13 is installed OR venv-openstack-glance-x86_64-17.0.1~dev30-3.13 is installed OR venv-openstack-heat-11.0.3~dev31-3.15 is installed OR venv-openstack-heat-x86_64-11.0.3~dev31-3.15 is installed OR venv-openstack-horizon-14.1.1~dev1-4.14 is installed OR venv-openstack-horizon-x86_64-14.1.1~dev1-4.14 is installed OR venv-openstack-ironic-11.1.4~dev22-4.11 is installed OR venv-openstack-ironic-x86_64-11.1.4~dev22-4.11 is installed OR venv-openstack-keystone-14.1.1~dev36-3.15 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev36-3.15 is installed OR venv-openstack-magnum-7.2.1~dev1-4.15 is installed OR venv-openstack-magnum-x86_64-7.2.1~dev1-4.15 is installed OR venv-openstack-manila-7.3.1~dev15-3.15 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.15 is installed OR venv-openstack-monasca-2.7.1~dev10-3.13 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.15 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.15 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.13 is installed OR venv-openstack-neutron-13.0.7~dev48-6.15 is installed OR venv-openstack-neutron-x86_64-13.0.7~dev48-6.15 is installed OR venv-openstack-nova-18.2.4~dev63-3.15 is installed OR venv-openstack-nova-x86_64-18.2.4~dev63-3.15 is installed OR venv-openstack-octavia-3.2.2~dev8-4.15 is installed OR venv-openstack-octavia-x86_64-3.2.2~dev8-4.15 is installed OR venv-openstack-sahara-9.0.2~dev15-3.15 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev15-3.15 is installed OR venv-openstack-swift-2.19.2~dev48-2.10 is installed OR venv-openstack-swift-x86_64-2.19.2~dev48-2.10 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND golang-github-prometheus-node_exporter-0.18.1-1.6 is installed

BACK