Oval Definition:oval:org.opensuse.security:def:65819
Revision Date:2020-12-01Version:1
Title:Security update for java-1_8_0-openjdk (Important)
Description:

This update for java-1_8_0-openjdk to version 8u222 fixes the following issues:

Security issues fixed:

- CVE-2019-2745: Improved ECC Implementation (bsc#1141784). - CVE-2019-2762: Exceptional throw cases (bsc#1141782). - CVE-2019-2766: Improve file protocol handling (bsc#1141789). - CVE-2019-2769: Better copies of CopiesList (bsc#1141783). - CVE-2019-2786: More limited privilege usage (bsc#1141787). - CVE-2019-2816: Normalize normalization (bsc#1141785). - CVE-2019-2842: Extended AES support (bsc#1141786). - CVE-2019-7317: Improve PNG support (bsc#1141780). - Certificate validation improvements

Non-security issue fixed:

- Fixed an issue where the installation failed when the manpages are not present (bsc#1115375)

Family:unixClass:patch
Status:Reference(s):1115375
1141780
1141782
1141783
1141784
1141785
1141786
1141787
1141789
1171746
1172437
CVE-2018-1000199
CVE-2019-2745
CVE-2019-2762
CVE-2019-2766
CVE-2019-2769
CVE-2019-2786
CVE-2019-2816
CVE-2019-2842
CVE-2019-7317
CVE-2020-10757
SUSE-SU-2019:2021-1
SUSE-SU-2020:1646-1
Platform(s):SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-3.24 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-3.24 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-3.24 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-3.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_40-default-3-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_11-3-2 is installed
    • BACK