SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-2019-3238

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-2019-3238

Security update for java-1_8_0-openjdk

Type: security

Severity: important

Issued: 2019-12-10

Description:

This update for java-1_8_0-openjdk (jdk8u232/icedtea 3.14.0) fixes the following issues:

Security issues fixed (bsc#1154212):

- CVE-2019-2933: Windows file handling redux
- CVE-2019-2945: Better socket support
- CVE-2019-2949: Better Kerberos ccache handling
- CVE-2019-2958: Build Better Processes
- CVE-2019-2964: Better support for patterns
- CVE-2019-2962: Better Glyph Images
- CVE-2019-2973: Better pattern compilation
- CVE-2019-2975: Unexpected exception in jjs
- CVE-2019-2978: Improved handling of jar files
- CVE-2019-2981: Better Path supports
- CVE-2019-2983: Better serial attributes
- CVE-2019-2987: Better rendering of native glyphs
- CVE-2019-2988: Better Graphics2D drawing
- CVE-2019-2989: Improve TLS connection support
- CVE-2019-2992: Enhance font glyph mapping
- CVE-2019-2999: Commentary on Javadoc comments
- CVE-2019-2894: Enhance ECDSA operations (bsc#1152856)

Bug fixes:

- Fixed build failuers on ARM (bsc#1138529).

References

CVE: CVE-2019-2999
CVE: CVE-2019-2992
CVE: CVE-2019-2989
CVE: CVE-2019-2988
CVE: CVE-2019-2987
CVE: CVE-2019-2983
CVE: CVE-2019-2981
CVE: CVE-2019-2978
CVE: CVE-2019-2975
CVE: CVE-2019-2973
CVE: CVE-2019-2964
CVE: CVE-2019-2962
CVE: CVE-2019-2958
CVE: CVE-2019-2949
CVE: CVE-2019-2945
CVE: CVE-2019-2933
CVE: CVE-2019-2894
Bugzilla: 1154212 VUL-0: java-1_7_0-openjdk,java-1_8_0-openjdk,java-11-openjdk: Oracle 2019 October CPU
Bugzilla: 1152856 VUL-0: CVE-2019-2894: java-1_7_0-openjdk,java-11-openjdk,java-10-openjdk: Minerva: ECDSA key recovery from bit-length leakage
Bugzilla: 1138529 [aarch64] Bazel 0.19.2 fails to build with JRE internal error on some workers (ThunderX1 and OverDrive 1000)

Packages

java-1_8_0-openjdk-1.8.0.232-3.27.1