OVAL Reference oval:org.opensuse.security:def:6487

Oval Definition:

oval:org.opensuse.security:def:6487

Revision Date:	2021-11-23	Version:	1
Title:	Security update for java-1_8_0-openjdk (Important)
Description:	This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).
Family:	unix	Class:	patch
Status:		Reference(s):	1191901 1191903 1191904 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 CVE-2008-4989 CVE-2010-2522 CVE-2010-2523 CVE-2011-0904 CVE-2011-0905 CVE-2011-1164 CVE-2011-4128 CVE-2012-0390 CVE-2012-1569 CVE-2012-1573 CVE-2012-4024 CVE-2012-4025 CVE-2013-0211 CVE-2013-1571 CVE-2013-1988 CVE-2013-6393 CVE-2014-0092 CVE-2014-1959 CVE-2014-2524 CVE-2014-2525 CVE-2014-3158 CVE-2014-3466 CVE-2014-8564 CVE-2014-9130 CVE-2014-9939 CVE-2015-0294 CVE-2015-1038 CVE-2015-2304 CVE-2015-3622 CVE-2015-6251 CVE-2015-8915 CVE-2015-8916 CVE-2015-8918 CVE-2015-8919 CVE-2015-8920 CVE-2015-8921 CVE-2015-8922 CVE-2015-8923 CVE-2015-8924 CVE-2015-8925 CVE-2015-8926 CVE-2015-8928 CVE-2015-8929 CVE-2015-8930 CVE-2015-8931 CVE-2015-8932 CVE-2015-8933 CVE-2015-8934 CVE-2016-10209 CVE-2016-10349 CVE-2016-10350 CVE-2016-1372 CVE-2016-1541 CVE-2016-2335 CVE-2016-4300 CVE-2016-4301 CVE-2016-4302 CVE-2016-4809 CVE-2016-5418 CVE-2016-5844 CVE-2016-6250 CVE-2016-7444 CVE-2016-8610 CVE-2016-8687 CVE-2016-8688 CVE-2016-8689 CVE-2017-10790 CVE-2017-12448 CVE-2017-12450 CVE-2017-12452 CVE-2017-12453 CVE-2017-12454 CVE-2017-12456 CVE-2017-12799 CVE-2017-13757 CVE-2017-14128 CVE-2017-14129 CVE-2017-14130 CVE-2017-14166 CVE-2017-14333 CVE-2017-14501 CVE-2017-14502 CVE-2017-14503 CVE-2017-14529 CVE-2017-14729 CVE-2017-14745 CVE-2017-14974 CVE-2017-15938 CVE-2017-15939 CVE-2017-15996 CVE-2017-16826 CVE-2017-16827 CVE-2017-16828 CVE-2017-16829 CVE-2017-16830 CVE-2017-16831 CVE-2017-16832 CVE-2017-17969 CVE-2017-5335 CVE-2017-5336 CVE-2017-5337 CVE-2017-6318 CVE-2017-6965 CVE-2017-6966 CVE-2017-6969 CVE-2017-7209 CVE-2017-7210 CVE-2017-7223 CVE-2017-7224 CVE-2017-7225 CVE-2017-7226 CVE-2017-7299 CVE-2017-7300 CVE-2017-7301 CVE-2017-7302 CVE-2017-7303 CVE-2017-7304 CVE-2017-7960 CVE-2017-7961 CVE-2017-8392 CVE-2017-8393 CVE-2017-8394 CVE-2017-8396 CVE-2017-8421 CVE-2017-8834 CVE-2017-8871 CVE-2017-9746 CVE-2017-9747 CVE-2017-9748 CVE-2017-9750 CVE-2017-9755 CVE-2017-9756 CVE-2018-1000876 CVE-2018-10372 CVE-2018-10373 CVE-2018-10534 CVE-2018-10535 CVE-2018-10844 CVE-2018-10845 CVE-2018-10846 CVE-2018-10860 CVE-2018-10886 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17985 CVE-2018-18309 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19931 CVE-2018-19932 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2018-6323 CVE-2018-6543 CVE-2018-6759 CVE-2018-6872 CVE-2018-7208 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-8945 CVE-2019-1010180 CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 SUSE-SU-2021:3770-1
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE Leap 42.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP2 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for Legacy 15 SP3 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND libevent-1_4-2-1.4.5-24.24.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information bind-9.9.6P1-0.15.1 is installed OR bind-libs-9.9.6P1-0.15.1 is installed OR bind-libs-32bit-9.9.6P1-0.15.1 is installed OR bind-utils-9.9.6P1-0.15.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information strongswan-5.1.3-18 is installed OR strongswan-doc-5.1.3-18 is installed OR strongswan-ipsec-5.1.3-18 is installed OR strongswan-libs0-5.1.3-18 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.5.0esr-54 is installed OR MozillaFirefox-translations-38.5.0esr-54 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND ppp-2.4.7-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND libyaml-0-2-0.1.6-7 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP2 is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy 15 SP3 is installed AND Package Information java-1_8_0-openjdk-1.8.0.312-3.58.2 is installed OR java-1_8_0-openjdk-demo-1.8.0.312-3.58.2 is installed OR java-1_8_0-openjdk-devel-1.8.0.312-3.58.2 is installed OR java-1_8_0-openjdk-headless-1.8.0.312-3.58.2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_103-6_33-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_6-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.8.5-15.9 is installed OR puppet-server-3.8.5-15.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-6 is installed OR rubygem-passenger-5.0.18-6 is installed OR rubygem-passenger-apache2-5.0.18-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libslurm29-16.05.8.1-5 is installed OR perl-slurm-16.05.8.1-5 is installed OR slurm-16.05.8.1-5 is installed OR slurm-auth-none-16.05.8.1-5 is installed OR slurm-devel-16.05.8.1-5 is installed OR slurm-doc-16.05.8.1-5 is installed OR slurm-lua-16.05.8.1-5 is installed OR slurm-munge-16.05.8.1-5 is installed OR slurm-pam_slurm-16.05.8.1-5 is installed OR slurm-plugins-16.05.8.1-5 is installed OR slurm-sched-wiki-16.05.8.1-5 is installed OR slurm-slurmdbd-16.05.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-73 is installed OR libopenssl0_9_8-0.9.8j-73 is installed OR libopenssl0_9_8-32bit-0.9.8j-73 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.67-60.64.21 is installed OR kernel-ec2-devel-3.12.67-60.64.21 is installed OR kernel-ec2-extra-3.12.67-60.64.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-68 is installed OR php5-5.5.14-68 is installed OR php5-bcmath-5.5.14-68 is installed OR php5-bz2-5.5.14-68 is installed OR php5-calendar-5.5.14-68 is installed OR php5-ctype-5.5.14-68 is installed OR php5-curl-5.5.14-68 is installed OR php5-dba-5.5.14-68 is installed OR php5-dom-5.5.14-68 is installed OR php5-enchant-5.5.14-68 is installed OR php5-exif-5.5.14-68 is installed OR php5-fastcgi-5.5.14-68 is installed OR php5-fileinfo-5.5.14-68 is installed OR php5-fpm-5.5.14-68 is installed OR php5-ftp-5.5.14-68 is installed OR php5-gd-5.5.14-68 is installed OR php5-gettext-5.5.14-68 is installed OR php5-gmp-5.5.14-68 is installed OR php5-iconv-5.5.14-68 is installed OR php5-imap-5.5.14-68 is installed OR php5-intl-5.5.14-68 is installed OR php5-json-5.5.14-68 is installed OR php5-ldap-5.5.14-68 is installed OR php5-mbstring-5.5.14-68 is installed OR php5-mcrypt-5.5.14-68 is installed OR php5-mysql-5.5.14-68 is installed OR php5-odbc-5.5.14-68 is installed OR php5-opcache-5.5.14-68 is installed OR php5-openssl-5.5.14-68 is installed OR php5-pcntl-5.5.14-68 is installed OR php5-pdo-5.5.14-68 is installed OR php5-pear-5.5.14-68 is installed OR php5-pgsql-5.5.14-68 is installed OR php5-phar-5.5.14-68 is installed OR php5-posix-5.5.14-68 is installed OR php5-pspell-5.5.14-68 is installed OR php5-shmop-5.5.14-68 is installed OR php5-snmp-5.5.14-68 is installed OR php5-soap-5.5.14-68 is installed OR php5-sockets-5.5.14-68 is installed OR php5-sqlite-5.5.14-68 is installed OR php5-suhosin-5.5.14-68 is installed OR php5-sysvmsg-5.5.14-68 is installed OR php5-sysvsem-5.5.14-68 is installed OR php5-sysvshm-5.5.14-68 is installed OR php5-tokenizer-5.5.14-68 is installed OR php5-wddx-5.5.14-68 is installed OR php5-xmlreader-5.5.14-68 is installed OR php5-xmlrpc-5.5.14-68 is installed OR php5-xmlwriter-5.5.14-68 is installed OR php5-xsl-5.5.14-68 is installed OR php5-zip-5.5.14-68 is installed OR php5-zlib-5.5.14-68 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND yast2-core-2.17.44-0.5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information NetworkManager-0.7.1_git20090811-3.28.2 is installed OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information ant-1.7.1-20.11.1 is installed OR ant-trax-1.7.1-16.11.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR avahi-utils-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND dnsmasq-2.71-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information gstreamer-plugins-bad-1.8.3-14 is installed OR gstreamer-plugins-bad-lang-1.8.3-14 is installed OR libgstadaptivedemux-1_0-0-1.8.3-14 is installed OR libgstbadaudio-1_0-0-1.8.3-14 is installed OR libgstbadbase-1_0-0-1.8.3-14 is installed OR libgstbadvideo-1_0-0-1.8.3-14 is installed OR libgstbasecamerabinsrc-1_0-0-1.8.3-14 is installed OR libgstcodecparsers-1_0-0-1.8.3-14 is installed OR libgstgl-1_0-0-1.8.3-14 is installed OR libgstmpegts-1_0-0-1.8.3-14 is installed OR libgstphotography-1_0-0-1.8.3-14 is installed OR libgsturidownloader-1_0-0-1.8.3-14 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND dhcp-devel-4.2.4.P2-0.11.13.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information MozillaFirefox-38.3.0esr-22.1 is installed OR MozillaFirefox-devel-38.3.0esr-22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information apache2-2.2.12-1.51.52.1 is installed OR apache2-devel-2.2.12-1.51.52.1 is installed OR apache2-doc-2.2.12-1.51.52.1 is installed OR apache2-example-pages-2.2.12-1.51.52.1 is installed OR apache2-prefork-2.2.12-1.51.52.1 is installed OR apache2-utils-2.2.12-1.51.52.1 is installed OR apache2-worker-2.2.12-1.51.52.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information gnutls-3.2.15-7 is installed OR libgnutls-devel-3.2.15-7 is installed OR libgnutls-openssl-devel-3.2.15-7 is installed OR libgnutlsxx-devel-3.2.15-7 is installed OR libgnutlsxx28-3.2.15-7 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information gimp-devel-2.8.10-1 is installed OR libgimp-2_0-0-2.8.10-1 is installed OR libgimpui-2_0-0-2.8.10-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND dbus-1-glib-devel-0.100.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR ImageMagick-devel-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagick++-devel-6.8.8.1-71.85 is installed OR perl-PerlMagick-6.8.8.1-71.85 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND bogofilter-1.2.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information lhasa-0.2.0-5.1 is installed OR liblhasa0-0.2.0-5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.31-16.1 is installed OR gstreamer-0_10-plugins-good-lang-0.10.31-16.1 is installed

BACK