Oval Definition:	oval:org.opensuse.security:def:6181
Revision Date: 2022-03-04 Version: 1 Title: Security update for java-11-openjdk (Moderate) Description: This update for java-11-openjdk fixes the following issues: - CVE-2022-21248: Fixed incomplete deserialization class filtering in ObjectInputStream. (bnc#1194926) - CVE-2022-21277: Fixed incorrect reading of TIFF files in TIFFNullDecompressor. (bnc#1194930) - CVE-2022-21282: Fixed Insufficient URI checks in the XSLT TransformerImpl. (bnc#1194933) - CVE-2022-21283: Fixed unexpected exception thrown in regex Pattern. (bnc#1194937) - CVE-2022-21291: Fixed Incorrect marking of writeable fields. (bnc#1194925) - CVE-2022-21293: Fixed Incomplete checks of StringBuffer and StringBuilder during deserialization. (bnc#1194935) - CVE-2022-21294: Fixed Incorrect IdentityHashMap size checks during deserialization. (bnc#1194934) - CVE-2022-21296: Fixed Incorrect access checks in XMLEntityManager. (bnc#1194932) - CVE-2022-21299: Fixed Infinite loop related to incorrect handling of newlines in XMLEntityScanner. (bnc#1194931) - CVE-2022-21305: Fixed Array indexing issues in LIRGenerator. (bnc#1194939) - CVE-2022-21340: Fixed Excessive resource use when reading JAR manifest attributes. (bnc#1194940) - CVE-2022-21341: Fixed OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream. (bnc#1194941) - CVE-2022-21360: Fixed Excessive memory allocation in BMPImageReader. (bnc#1194929) - CVE-2022-21365: Fixed Integer overflow in BMPImageReader. (bnc#1194928) - CVE-2022-21366: Fixed Excessive memory allocation in TIFF*Decompressor. (bnc#1194927) Family: unix Class: patch Status: Reference(s): 1189060 1194925 1194926 1194927 1194928 1194929 1194930 1194931 1194932 1194933 1194934 1194935 1194937 1194939 1194940 1194941 CVE-2006-7250 CVE-2008-5077 CVE-2009-0590 CVE-2009-0591 CVE-2009-0789 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2010-0740 CVE-2010-0742 CVE-2010-1633 CVE-2010-2252 CVE-2010-2761 CVE-2010-2939 CVE-2010-3864 CVE-2010-4410 CVE-2010-4411 CVE-2010-4777 CVE-2010-5298 CVE-2011-0014 CVE-2011-0465 CVE-2011-2199 CVE-2011-3207 CVE-2011-3210 CVE-2011-3635 CVE-2011-4108 CVE-2011-4349 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2012-0027 CVE-2012-0050 CVE-2012-0884 CVE-2012-1165 CVE-2012-2110 CVE-2012-2673 CVE-2012-2686 CVE-2012-4929 CVE-2012-4929 CVE-2013-0166 CVE-2013-0169 CVE-2013-1982 CVE-2013-4353 CVE-2013-6449 CVE-2013-6450 CVE-2014-0076 CVE-2014-0160 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-0467 CVE-2014-3470 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3509 CVE-2014-3510 CVE-2014-3511 CVE-2014-3512 CVE-2014-3513 CVE-2014-3567 CVE-2014-3568 CVE-2014-3569 CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-3675 CVE-2014-3676 CVE-2014-3677 CVE-2014-4877 CVE-2014-5139 CVE-2014-8275 CVE-2014-9116 CVE-2015-0204 CVE-2015-0205 CVE-2015-0206 CVE-2015-0209 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0293 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-1793 CVE-2015-1794 CVE-2015-2059 CVE-2015-3193 CVE-2015-3194 CVE-2015-3195 CVE-2015-3196 CVE-2015-3197 CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 CVE-2015-7236 CVE-2016-0701 CVE-2016-0702 CVE-2016-0705 CVE-2016-0797 CVE-2016-0798 CVE-2016-0800 CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2109 CVE-2016-2176 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-2180 CVE-2016-2181 CVE-2016-2182 CVE-2016-2183 CVE-2016-4971 CVE-2016-6302 CVE-2016-6303 CVE-2016-6304 CVE-2016-6306 CVE-2016-7052 CVE-2016-7055 CVE-2016-7056 CVE-2016-7098 CVE-2016-7969 CVE-2016-7972 CVE-2016-9427 CVE-2017-3731 CVE-2017-3732 CVE-2017-3735 CVE-2017-3736 CVE-2017-3738 CVE-2017-5974 CVE-2017-5975 CVE-2017-5976 CVE-2017-5977 CVE-2017-5978 CVE-2017-5979 CVE-2017-5981 CVE-2017-6508 CVE-2018-0732 CVE-2018-0737 CVE-2018-0739 CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352 CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356 CVE-2018-14357 CVE-2018-14358 CVE-2018-14359 CVE-2018-14360 CVE-2018-14361 CVE-2018-14362 CVE-2018-14363 CVE-2018-17828 CVE-2018-6381 CVE-2018-6484 CVE-2018-6540 CVE-2018-6542 CVE-2018-7725 CVE-2018-7726 CVE-2021-3622 CVE-2022-21248 CVE-2022-21277 CVE-2022-21282 CVE-2022-21283 CVE-2022-21291 CVE-2022-21293 CVE-2022-21294 CVE-2022-21296 CVE-2022-21299 CVE-2022-21305 CVE-2022-21340 CVE-2022-21341 CVE-2022-21360 CVE-2022-21365 CVE-2022-21366 SUSE-SU-2022:0730-1 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP4 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information libreoffice-4.3.5.2-10 is installed OR libreoffice-sdk-4.3.5.2-10 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.59-60.41 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.21-84 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information libudev-mini-devel-228-150.53 is installed OR libudev-mini1-228-150.53 is installed OR systemd-mini-228-150.53 is installed OR systemd-mini-devel-228-150.53 is installed OR udev-mini-228-150.53 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.9esr-0.3.1 is installed OR MozillaFirefox-translations-17.0.9esr-0.3.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bash-3.2-147.22.1 is installed OR bash-doc-3.2-147.22.1 is installed OR libreadline5-5.2-147.22.1 is installed OR libreadline5-32bit-5.2-147.22.1 is installed OR readline-doc-5.2-147.22.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information perl-5.18.2-3 is installed OR perl-32bit-5.18.2-3 is installed OR perl-base-5.18.2-3 is installed OR perl-doc-5.18.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND shim-0.9-23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information colord-1.3.3-12 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-12 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_61-52_69-default-4-2 is installed OR kgraft-patch-3_12_61-52_69-xen-4-2 is installed OR kgraft-patch-SLE12_Update_20-4-2 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102.1 is installed OR libopenssl0_9_8-0.9.8j-102.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND libpcreposix0-8.39-8.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND libqb0-1.0.3+20171226.6d62b64-4.3 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND coolkey-1.1.0-148.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_59-60_45-default-5-2 is installed OR kgraft-patch-3_12_59-60_45-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_6-5-2 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-1-2 is installed OR kgraft-patch-SLE12-SP3_Update_1-1-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND facter-2.0.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-6 is installed OR rubygem-passenger-5.0.18-6 is installed OR rubygem-passenger-apache2-5.0.18-6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-16 is installed OR openldap2-2.4.39-16 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-PyYAML-3.10-15 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP1 is installed AND Package Information evolution-data-server-2.28.2-0.10.9 is installed OR evolution-data-server-32bit-2.28.2-0.10.9 is installed OR evolution-data-server-lang-2.28.2-0.10.9 is installed OR evolution-data-server-x86-2.28.2-0.10.9 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND apache2-mod_perl-2.0.4-40.19 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information libapr-util1-1.3.4-12.22.21.2 is installed OR libapr-util1-32bit-1.3.4-12.22.21.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND Package Information libopenssl-devel-0.9.8j-0.97.1 is installed OR libopenssl0_9_8-0.9.8j-0.97.1 is installed OR libopenssl0_9_8-32bit-0.9.8j-0.97.1 is installed OR libopenssl0_9_8-hmac-0.9.8j-0.97.1 is installed OR libopenssl0_9_8-hmac-32bit-0.9.8j-0.97.1 is installed OR openssl-0.9.8j-0.97.1 is installed OR openssl-doc-0.9.8j-0.97.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information PackageKit-0.3.14-2.30.11 is installed OR PackageKit-lang-0.3.14-2.30.11 is installed OR hal-0.5.12-23.76.1 is installed OR hal-32bit-0.5.12-23.76.1 is installed OR hal-doc-0.5.12-23.76.1 is installed OR hal-x86-0.5.12-23.76.1 is installed OR libpackagekit-glib10-0.3.14-2.30.11 is installed Definition Synopsis SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libldap-openssl1-2_4-2-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-32bit-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-x86-2.4.26-0.62.3 is installed OR openldap2-client-openssl1-2.4.26-0.62.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND apache2-mod_nss-1.0.8-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND autofs-5.0.9-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND java-11-openjdk-11.0.14.0-3.40.4 is installed OR java-11-openjdk-demo-11.0.14.0-3.40.4 is installed OR java-11-openjdk-devel-11.0.14.0-3.40.4 is installed OR java-11-openjdk-headless-11.0.14.0-3.40.4 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND java-11-openjdk-11.0.14.0-3.40.4 is installed OR java-11-openjdk-demo-11.0.14.0-3.40.4 is installed OR java-11-openjdk-devel-11.0.14.0-3.40.4 is installed OR java-11-openjdk-headless-11.0.14.0-3.40.4 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libvncclient0-0.9.9-16 is installed OR libvncserver0-0.9.9-16 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-devel-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information apache2-2.2.12-1.40.1 is installed OR apache2-devel-2.2.12-1.40.1 is installed OR apache2-doc-2.2.12-1.40.1 is installed OR apache2-example-pages-2.2.12-1.40.1 is installed OR apache2-prefork-2.2.12-1.40.1 is installed OR apache2-utils-2.2.12-1.40.1 is installed OR apache2-worker-2.2.12-1.40.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.13.2 is installed OR MozillaFirefox-devel-31.8.0esr-0.13.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information Xerces-c-2.8.0-29.17.1 is installed OR libXerces-c-devel-2.8.0-29.17.1 is installed OR libXerces-c28-2.8.0-29.17.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND bind-devel-9.9.5P1-1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND augeas-devel-1.2.0-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND automake-1.13.4-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND typelib-1_0-Gtk-2_0-2.24.31-7 is installed
BACK