Oval Definition:
oval:org.opensuse.security:def:65833
Revision Date
:
2020-12-01
Version
:
1
Title
:
Security update for java-1_8_0-openjdk (Important)
Description
:
This update for java-1_8_0-openjdk to version jdk8u252 fixes the following issues:
- CVE-2020-2754: Forward references to Nashorn (bsc#1169511) - CVE-2020-2755: Improve Nashorn matching (bsc#1169511) - CVE-2020-2756: Better mapping of serial ENUMs (bsc#1169511) - CVE-2020-2757: Less Blocking Array Queues (bsc#1169511) - CVE-2020-2773: Better signatures in XML (bsc#1169511) - CVE-2020-2781: Improve TLS session handling (bsc#1169511) - CVE-2020-2800: Better Headings for HTTP Servers (bsc#1169511) - CVE-2020-2803: Enhance buffering of byte buffers (bsc#1169511) - CVE-2020-2805: Enhance typing of methods (bsc#1169511) - CVE-2020-2830: Better Scanner conversions (bsc#1169511) - Ignore whitespaces after the header or footer in PEM X.509 cert (bsc#1171352)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1103203
1160398
1160467
1160468
1169511
1171352
CVE-2019-14896
CVE-2019-14897
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
SUSE-SU-2020:1569-1
Platform(s)
:
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
AND
Package Information
java-1_8_0-openjdk-1.8.0.252-3.35 is installed
OR
java-1_8_0-openjdk-demo-1.8.0.252-3.35 is installed
OR
java-1_8_0-openjdk-devel-1.8.0.252-3.35 is installed
OR
java-1_8_0-openjdk-headless-1.8.0.252-3.35 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
AND
Package Information
kernel-livepatch-4_12_14-197_7-default-7-2 is installed
OR
kernel-livepatch-SLE15-SP1_Update_2-7-2 is installed
BACK