Oval Definition:	oval:org.opensuse.security:def:60420
Revision Date: 2021-11-23 Version: 1 Title: Security update for java-1_8_0-openjdk (Important) Description: This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). Family: unix Class: patch Status: Reference(s): 1005778 1005780 1005781 1009062 1009966 1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1012382 1015336 1015337 1015340 1015342 1015343 1022604 1022743 1024296 1025108 1031492 1036215 1043008 1043598 1044596 1047281 1056415 1056427 1060799 1063269 1068032 1074235 1075087 1075091 1075994 1076263 1080157 1082153 1082299 1082318 1082485 1082962 1083125 1083635 1083650 1083900 1084721 1085058 1085185 1085511 1085958 1087082 1088242 1088865 1089023 1089115 1089198 1089393 1089608 1089644 1089752 1089895 1089925 1090225 1090643 1090658 1090663 1090708 1090718 1090734 1090953 1091041 1091325 1091728 1091925 1091960 1092289 1092497 1092566 1092611 1092904 1093008 1093144 1093215 1094019 1111331 1112066 1112695 1113668 1113669 1120374 1122208 1129180 1131863 1134156 1137990 1139073 1140290 1140359 1141035 1146882 1146884 1148987 1149429 1154738 1155988 1175070 1175071 1175072 1191901 1191903 1191904 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 802154 910252 910253 913650 913651 917152 959933 966170 966172 966186 966191 969476 969477 981348 983922 996511 CVE-2007-5970 CVE-2008-7247 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2009-4492 CVE-2010-0541 CVE-2010-5298 CVE-2011-0465 CVE-2011-1004 CVE-2011-1005 CVE-2011-3172 CVE-2011-4815 CVE-2012-2141 CVE-2012-5615 CVE-2013-1976 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-2284 CVE-2014-2285 CVE-2014-2494 CVE-2014-3470 CVE-2014-3565 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-8116 CVE-2014-8117 CVE-2014-8964 CVE-2014-9620 CVE-2014-9621 CVE-2014-9653 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4913 CVE-2015-5621 CVE-2015-5969 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-2047 CVE-2016-2830 CVE-2016-3477 CVE-2016-3492 CVE-2016-3521 CVE-2016-3615 CVE-2016-5289 CVE-2016-5292 CVE-2016-5440 CVE-2016-5584 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 CVE-2016-6662 CVE-2016-6663 CVE-2016-6664 CVE-2016-7440 CVE-2016-8283 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3302 CVE-2017-3312 CVE-2017-3313 CVE-2017-3317 CVE-2017-3318 CVE-2017-7789 CVE-2018-1000199 CVE-2018-10087 CVE-2018-10124 CVE-2018-1065 CVE-2018-1130 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-19131 CVE-2018-19132 CVE-2018-3639 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2018-5803 CVE-2018-7492 CVE-2018-8781 CVE-2019-11091 CVE-2019-11135 CVE-2019-11139 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-12973 CVE-2019-13173 CVE-2019-13627 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-15903 CVE-2019-3835 CVE-2019-3839 CVE-2019-6446 CVE-2020-11985 CVE-2020-11993 CVE-2020-9490 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 SUSE-SU-2017:3048-1 SUSE-SU-2018:1366-1 SUSE-SU-2018:3771-1 SUSE-SU-2019:0419-1 SUSE-SU-2019:2181-1 SUSE-SU-2019:2872-1 SUSE-SU-2019:2988-1 SUSE-SU-2020:2450-1 SUSE-SU-2021:3771-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information ghostscript-9.27-lp150.2.23 is installed OR ghostscript-devel-9.27-lp150.2.23 is installed OR ghostscript-mini-9.27-lp150.2.23 is installed OR ghostscript-mini-devel-9.27-lp150.2.23 is installed OR ghostscript-x11-9.27-lp150.2.23 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information irssi-1.1.3-33 is installed OR irssi-devel-1.1.3-33 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-67.0.3575.97-lp151.2.12 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information python-rtslib-fb-2.1.73-lp152.2.3 is installed OR python2-rtslib-fb-2.1.73-lp152.2.3 is installed OR python3-rtslib-fb-2.1.73-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libmysqlclient18-10.0.30-28 is installed OR libmysqlclient18-32bit-10.0.30-28 is installed OR mariadb-10.0.30-28 is installed OR mariadb-client-10.0.30-28 is installed OR mariadb-errormessages-10.0.30-28 is installed OR mariadb-tools-10.0.30-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information grub2-2.02-12.39 is installed OR grub2-arm64-efi-2.02-12.39 is installed OR grub2-i386-pc-2.02-12.39 is installed OR grub2-snapper-plugin-2.02-12.39 is installed OR grub2-systemd-sleep-plugin-2.02-12.39 is installed OR grub2-x86_64-efi-2.02-12.39 is installed OR grub2-x86_64-xen-2.02-12.39 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND java-1_8_0-openjdk-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-demo-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-devel-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-headless-1.8.0.312-27.66.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND java-1_8_0-openjdk-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-demo-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-devel-1.8.0.312-27.66.1 is installed OR java-1_8_0-openjdk-headless-1.8.0.312-27.66.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ucode-intel-20191112a-13.56 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-urllib3-1.23-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.0-11.27 is installed
BACK