Oval Definition:	oval:org.opensuse.security:def:6287
Revision Date: 2022-01-04 Version: 1 Title: Security update for java-1_8_0-ibm (Important) (in QA) Description: This update for java-1_8_0-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 7 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. (bsc#1194198, bsc#1192052) - CVE-2021-35586: Excessive memory allocation in BMPImageReader. (bsc#1191914) - CVE-2021-35564: Certificates with end dates too far in the future can corrupt keystore. (bsc#1191913) - CVE-2021-35559: Excessive memory allocation in RTFReader. (bsc#1191911) - CVE-2021-35556: Excessive memory allocation in RTFParser. (bsc#1191910) - CVE-2021-35565: Loop in HttpsServer triggered during TLS session close. (bsc#1191909) - CVE-2021-35588: Incomplete validation of inner class references in ClassFileParser. (bsc#1191905) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) - CVE-2021-2369: JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2163: Incomplete enforcement of JAR signing disabled algorithms. (bsc#1185055) - CVE-2021-35560: Fixed a vulnerability in the component Deployment. (bsc#1191902) - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake. (bsc#1191904) This patch is currently in QA and not yet available for download. Family: unix Class: patch Status: Reference(s): 1185055 1188564 1188565 1191902 1191904 1191905 1191909 1191910 1191911 1191913 1191914 1192052 1194198 1194232 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2009-3939 CVE-2009-4026 CVE-2009-4027 CVE-2009-4131 CVE-2009-4138 CVE-2009-4536 CVE-2009-4538 CVE-2009-5029 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2010-1146 CVE-2010-1436 CVE-2010-1641 CVE-2010-2066 CVE-2010-2074 CVE-2010-2942 CVE-2010-2954 CVE-2010-2955 CVE-2010-3081 CVE-2010-3170 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3301 CVE-2010-3310 CVE-2010-4494 CVE-2011-0712 CVE-2011-1020 CVE-2011-1577 CVE-2011-1831 CVE-2011-1832 CVE-2011-1833 CVE-2011-1834 CVE-2011-1835 CVE-2011-1836 CVE-2011-1837 CVE-2011-1944 CVE-2011-2203 CVE-2011-3389 CVE-2011-3640 CVE-2012-0056 CVE-2012-3406 CVE-2012-4412 CVE-2012-4433 CVE-2012-4929 CVE-2012-5134 CVE-2013-0160 CVE-2013-0231 CVE-2013-0242 CVE-2013-0338 CVE-2013-0743 CVE-2013-0791 CVE-2013-0913 CVE-2013-1620 CVE-2013-1739 CVE-2013-1740 CVE-2013-1914 CVE-2013-1969 CVE-2013-2062 CVE-2013-2207 CVE-2013-2850 CVE-2013-4237 CVE-2013-4312 CVE-2013-4332 CVE-2013-4458 CVE-2013-5605 CVE-2013-7423 CVE-2013-7447 CVE-2014-0004 CVE-2014-0038 CVE-2014-00691 CVE-2014-0191 CVE-2014-0196 CVE-2014-0475 CVE-2014-1492 CVE-2014-1568 CVE-2014-1569 CVE-2014-1829 CVE-2014-1830 CVE-2014-1932 CVE-2014-3566 CVE-2014-3660 CVE-2014-4043 CVE-2014-4975 CVE-2014-5119 CVE-2014-6040 CVE-2014-7817 CVE-2014-8080 CVE-2014-8090 CVE-2014-8121 CVE-2014-8146 CVE-2014-8147 CVE-2014-9402 CVE-2014-9654 CVE-2014-9687 CVE-2014-9761 CVE-2015-1472 CVE-2015-1473 CVE-2015-1781 CVE-2015-1819 CVE-2015-1855 CVE-2015-2296 CVE-2015-3900 CVE-2015-4000 CVE-2015-5312 CVE-2015-7181 CVE-2015-7182 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500 CVE-2015-7547 CVE-2015-7551 CVE-2015-7575 CVE-2015-7833 CVE-2015-7884 CVE-2015-7885 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 CVE-2015-8241 CVE-2015-8242 CVE-2015-8317 CVE-2015-8709 CVE-2015-8710 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778 CVE-2015-8779 CVE-2015-8812 CVE-2016-0617 CVE-2016-0723 CVE-2016-0728 CVE-2016-0758 CVE-2016-1234 CVE-2016-1237 CVE-2016-1572 CVE-2016-1583 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-1938 CVE-2016-1950 CVE-2016-1978 CVE-2016-1979 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2339 CVE-2016-2383 CVE-2016-2384 CVE-2016-2834 CVE-2016-2847 CVE-2016-3075 CVE-2016-3134 CVE-2016-3135 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3156 CVE-2016-3627 CVE-2016-3672 CVE-2016-3689 CVE-2016-3705 CVE-2016-3706 CVE-2016-3713 CVE-2016-3951 CVE-2016-4429 CVE-2016-4470 CVE-2016-4482 CVE-2016-4483 CVE-2016-4486 CVE-2016-4557 CVE-2016-4558 CVE-2016-4569 CVE-2016-4578 CVE-2016-4658 CVE-2016-4794 CVE-2016-4805 CVE-2016-4951 CVE-2016-4997 CVE-2016-4998 CVE-2016-5131 CVE-2016-5195 CVE-2016-5244 CVE-2016-5285 CVE-2016-5412 CVE-2016-5696 CVE-2016-5828 CVE-2016-5829 CVE-2016-6197 CVE-2016-6293 CVE-2016-6480 CVE-2016-6828 CVE-2016-7039 CVE-2016-7097 CVE-2016-8635 CVE-2016-8658 CVE-2016-9074 CVE-2016-9318 CVE-2016-9434 CVE-2016-9435 CVE-2016-9436 CVE-2016-9437 CVE-2016-9438 CVE-2016-9439 CVE-2016-9440 CVE-2016-9441 CVE-2016-9442 CVE-2016-9443 CVE-2016-9574 CVE-2016-9597 CVE-2016-9621 CVE-2016-9622 CVE-2016-9623 CVE-2016-9624 CVE-2016-9625 CVE-2016-9626 CVE-2016-9627 CVE-2016-9628 CVE-2016-9629 CVE-2016-9630 CVE-2016-9631 CVE-2016-9632 CVE-2016-9633 CVE-2017-0663 CVE-2017-14952 CVE-2017-15412 CVE-2017-15422 CVE-2017-17484 CVE-2017-18258 CVE-2017-5130 CVE-2017-5969 CVE-2017-7375 CVE-2017-7376 CVE-2017-7805 CVE-2017-7867 CVE-2017-7868 CVE-2017-8872 CVE-2017-9047 CVE-2017-9048 CVE-2017-9049 CVE-2017-9050 CVE-2018-14404 CVE-2018-14567 CVE-2018-9251 CVE-2021-2163 CVE-2021-2341 CVE-2021-2369 CVE-2021-35556 CVE-2021-35559 CVE-2021-35560 CVE-2021-35564 CVE-2021-35565 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-41035 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE OpenStack Cloud 6 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information kdelibs4-4.12.0-10 is installed OR kdelibs4-branding-upstream-4.12.0-10 is installed OR kdelibs4-core-4.12.0-10 is installed OR kdelibs4-doc-4.12.0-10 is installed OR libkde4-devel-4.12.0-10 is installed OR libkdecore4-devel-4.12.0-10 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.82-6.3 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information ghostscript-mini-9.26-23.16 is installed OR ghostscript-mini-devel-9.26-23.16 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information ghostscript-fonts-other-8.62-32.34.1 is installed OR ghostscript-fonts-rus-8.62-32.34.1 is installed OR ghostscript-fonts-std-8.62-32.34.1 is installed OR ghostscript-library-8.62-32.34.1 is installed OR ghostscript-omni-8.62-32.34.1 is installed OR ghostscript-x11-8.62-32.34.1 is installed OR libgimpprint-4.2.7-32.34.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information Mesa-9.0.3-0.19.1 is installed OR Mesa-32bit-9.0.3-0.19.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information tigervnc-1.3.0-22 is installed OR xorg-x11-Xvnc-1.3.0-22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information xen-4.5.2_02-4 is installed OR xen-kmp-default-4.5.2_02_k3.12.49_11-4 is installed OR xen-libs-4.5.2_02-4 is installed OR xen-libs-32bit-4.5.2_02-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gegl-0_2-0.2.0-14 is installed OR gegl-0_2-lang-0.2.0-14 is installed OR libgegl-0_2-0-0.2.0-14 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-4-2 is installed OR kgraft-patch-3_12_69-60_64_35-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_14-4-2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-69 is installed OR cluster-network-kmp-default-4.4.21-69 is installed OR dlm-kmp-default-4.4.21-69 is installed OR gfs2-kmp-default-4.4.21-69 is installed OR ocfs2-kmp-default-4.4.21-69 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND python-requests-2.11.1-6.28 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND apache2-mod_jk-1.2.40-7.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-4_4_49-92_14-default-6-4 is installed OR kgraft-patch-SLE12-SP2_Update_6-6-4 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_73-5-default-2-2.3 is installed OR kgraft-patch-SLE12-SP3_Update_0-2-2.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.8.5-15.3 is installed OR puppet-server-3.8.5-15.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information sles12-docker-image-1.1.2-20160727 is installed OR sles12sp1-docker-image-1.0.5-20160727 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-setuptools-1.1.7-7 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs6-6.9.5-7 is installed OR nodejs6-devel-6.9.5-7 is installed OR nodejs6-docs-6.9.5-7 is installed OR npm6-6.9.5-7 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP1 is installed AND wget-1.11.4-1.15.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information PackageKit-0.3.14-2.23.126 is installed OR PackageKit-lang-0.3.14-2.23.126 is installed OR hal-0.5.12-23.58.22 is installed OR hal-32bit-0.5.12-23.58.22 is installed OR hal-doc-0.5.12-23.58.21 is installed OR hal-x86-0.5.12-23.58.22 is installed OR libpackagekit-glib10-0.3.14-2.23.126 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND LibVNCServer-0.9.1-156.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND LibVNCServer-0.9.1-156.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information cvs-1.12.12-144.23.5.1 is installed OR cvs-doc-1.12.12-144.23.5.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND apache2-mod_perl-2.0.4-40.24.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information MozillaFirefox-45.4.0esr-81.1 is installed OR MozillaFirefox-translations-45.4.0esr-81.1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information kgraft-patch-4_4_114-92_64-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND dhcp-devel-4.2.4.P2-0.11.13.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information MozillaFirefox-devel-24.6.0esr-0.8.1 is installed OR mozilla-nspr-devel-4.10.6-0.3.1 is installed OR mozilla-nss-devel-3.16.1-0.8.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information ant-1.7.1-20.11.1 is installed OR ant-antlr-1.7.1-16.11.1 is installed OR ant-apache-bcel-1.7.1-16.11.1 is installed OR ant-apache-bsf-1.7.1-16.11.1 is installed OR ant-apache-log4j-1.7.1-16.11.1 is installed OR ant-apache-oro-1.7.1-16.11.1 is installed OR ant-apache-regexp-1.7.1-16.11.1 is installed OR ant-apache-resolver-1.7.1-16.11.1 is installed OR ant-commons-logging-1.7.1-16.11.1 is installed OR ant-javadoc-1.7.1-20.11.1 is installed OR ant-javamail-1.7.1-16.11.1 is installed OR ant-jdepend-1.7.1-16.11.1 is installed OR ant-jmf-1.7.1-16.11.1 is installed OR ant-junit-1.7.1-16.11.1 is installed OR ant-manual-1.7.1-20.11.1 is installed OR ant-nodeps-1.7.1-16.11.1 is installed OR ant-scripts-1.7.1-20.11.1 is installed OR ant-swing-1.7.1-16.11.1 is installed OR ant-trax-1.7.1-16.11.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information MozillaFirefox-31.3.0esr-15 is installed OR MozillaFirefox-devel-31.3.0esr-15 is installed OR mozilla-nss-3.17.2-12 is installed OR mozilla-nss-devel-3.17.2-12 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND cyrus-sasl-devel-2.1.26-7 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND cracklib-devel-2.9.0-7 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information bsh2-2.0.0.b5-3 is installed OR bsh2-classgen-2.0.0.b5-3 is installed OR bsh2-javadoc-2.0.0.b5-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND augeas-devel-1.2.0-17.3 is installed
BACK