SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-2952

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-2952

Security update for java-11-openjdk

Type: security

Severity: important

Issued: 2021-09-03

Description:

This update for java-11-openjdk fixes the following issues:

- Update to jdk-11.0.12+7
- CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565)
- CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566)
- CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564)

References

jira: SLE-5715 https://jira.suse.com/browse/SLE-5715
CVE: CVE-2021-2388
CVE: CVE-2021-2369
CVE: CVE-2021-2341
FATE: 326790 https://fate.suse.com/326790
Bugzilla: 1188566 VUL-0: CVE-2021-2388: java-11-openjdk,java-1_8_0-openjdk: flaw inside the Hotspot component performed range check elimination
Bugzilla: 1188565 VUL-0: CVE-2021-2369: java-1_8_0-openjdk,java-1_7_0-openjdk,java-11-openjdk: JAR file handling problem containing multiple MANIFEST.MF files
Bugzilla: 1188564 VUL-0: CVE-2021-2341: java-1_7_0-openjdk,java-1_8_0-openjdk,java-11-openjdk: flaw inside the FtpClient
Bugzilla: 1185476 L3: error message running tomcat "error: JVM_LIBDIR /usr/lib64/jvm-exports/java does not exist or is not a directory"

Packages

java-11-openjdk-11.0.12.0-3.59.1