Oval Definition:oval:org.opensuse.security:def:63995
Revision Date:2020-12-01Version:1
Title:Security update for java-1_7_1-ibm (Important)
Description:

This update for java-1_7_1-ibm fixes the following issues:

Java was updated to 7.1 Service Refresh 4 Fix Pack 60 [bsc#1162972, bsc#1160968].

Security issues fixed:

- CVE-2020-2583: Fixed a serialization vulnerability in BeanContextSupport (bsc#1162972). - CVE-2020-2593: Fixed an incorrect check in isBuiltinStreamHandler, causing URL normalization issues (bsc#1162972). - CVE-2020-2604: Fixed a serialization issue in jdk.serialFilter (bsc#1162972). - CVE-2020-2659: Fixed the incomplete enforcement of the maxDatagramSockets limit in DatagramChannelImpl (bsc#1162972).

Non-security issues fixed:

Class Libraries: IJ22333 HANG IN JAVA_JAVA_NET_SOCKETINPUTSTREAM_SOCKETREAD0 EVEN WHEN TIMEOUT IS SET IJ22350 JAVA 7 AND JAVA 8 NOT WORKING WELL WITH TRADITIONAL/SIMPLIFIED CHINESE EDITION OF WINDOWS CLIENT SYSTEM IJ22337 THE NAME OF THE REPUBLIC OF BELARUS IN THE RUSSIAN LOCALE INCONSISTENT WITH CLDR IJ22349 UPDATE TIMEZONE INFORMATION TO TZDATA2019C * JIT Compiler: IJ11368 JAVA JIT PPC: CRASH IN JIT COMPILED CODE ON PPC MACHINES
Family:unixClass:patch
Status:Reference(s):1087369
1111733
1115016
1140254
1153722
1154609
1159670
1160968
1162972
1172225
1174091
1174157
1174633
1174635
1174638
1175987
1176024
1176294
1176397
1177867
1178319
1178361
1178362
1178512
CVE-2018-19052
CVE-2019-12594
CVE-2019-18197
CVE-2019-20807
CVE-2019-20907
CVE-2019-7165
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-16846
CVE-2020-17490
CVE-2020-25592
CVE-2020-2583
CVE-2020-2593
CVE-2020-2604
CVE-2020-2659
CVE-2020-28196
openSUSE-SU-2019:1905-1
openSUSE-SU-2019:2347-1
openSUSE-SU-2020:0794-1
openSUSE-SU-2020:1257-1
openSUSE-SU-2020:1833-1
SUSE-SU-2020:0456-1
SUSE-SU-2020:0920-1
SUSE-SU-2020:2325-1
SUSE-SU-2020:3379-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND dosbox-0.74.3-lp151.3.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • python2-salt-3000-lp152.3.15 is installed
  • OR python3-salt-3000-lp152.3.15 is installed
  • OR salt-3000-lp152.3.15 is installed
  • OR salt-api-3000-lp152.3.15 is installed
  • OR salt-bash-completion-3000-lp152.3.15 is installed
  • OR salt-cloud-3000-lp152.3.15 is installed
  • OR salt-doc-3000-lp152.3.15 is installed
  • OR salt-fish-completion-3000-lp152.3.15 is installed
  • OR salt-master-3000-lp152.3.15 is installed
  • OR salt-minion-3000-lp152.3.15 is installed
  • OR salt-proxy-3000-lp152.3.15 is installed
  • OR salt-ssh-3000-lp152.3.15 is installed
  • OR salt-standalone-formulas-configuration-3000-lp152.3.15 is installed
  • OR salt-syndic-3000-lp152.3.15 is installed
  • OR salt-zsh-completion-3000-lp152.3.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.60-38.47 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.60-38.47 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.60-38.47 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.60-38.47 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.60-38.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.271-43.41 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.271-43.41 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.271-43.41 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.271-43.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • xorg-x11-server-1.19.6-4.8 is installed
  • OR xorg-x11-server-extra-1.19.6-4.8 is installed
    • BACK