SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3875

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3875

Security update for java-11-openjdk

Type: security

Severity: moderate

Issued: 2024-11-01

Description:

This update for java-11-openjdk fixes the following issues:

Updated to version 11.0.25+9 (October 2024 CPU):

- CVE-2024-21208: Fixed partial DoS in component Networking (bsc#1231702)
- CVE-2024-21210: Fixed unauthorized read/write access to data in component Hotspot (bsc#1231711) 
- CVE-2024-21217: Fixed partial DoS in component Serialization (bsc#1231716)
- CVE-2024-21235: Fixed unauthorized read/write access to data in component Hotspot (bsc#1231719)

References

CVE: CVE-2024-21235
CVE: CVE-2024-21217
CVE: CVE-2024-21210
CVE: CVE-2024-21208
Bugzilla: 1231719 VUL-0: CVE-2024-21235: java-*-openjdk,java-*-ibm: unauthorized read/write access to data in component Hotspot
Bugzilla: 1231716 VUL-0: CVE-2024-21217: java-*-openjdk,java-*-ibm: partial DoS in component Serialization
Bugzilla: 1231711 VUL-0: CVE-2024-21210: java-*-openjdk,java-*-ibm: component: Hotspot
Bugzilla: 1231702 VUL-0: CVE-2024-21208: java-*-openjdk,java-*-ibm: component: Networking

Packages

java-11-openjdk-11.0.25.0-150000.3.119.1