Описание
Security update for java-1_7_1-ibm
This update for java-1_7_1-ibm fixes the following issues:
IBM Security Update November 2022: (bsc#1205302, bsc#1204703)
- CVE-2022-3676: A security vulnerability was fixed in version 7.1.5.15, adding the reference here.
Список пакетов
Image SLES12-SP5-Azure-SAP-BYOS
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-Azure-SAP-On-Demand
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-EC2-SAP-BYOS
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-EC2-SAP-On-Demand
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-GCE-SAP-BYOS
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-GCE-SAP-On-Demand
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
SUSE Linux Enterprise Server 12 SP2-BCL
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-alsa-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-jdbc-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-plugin-1.7.1_sr5.15-38.77.1
SUSE Linux Enterprise Server 12 SP4-LTSS
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-alsa-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-jdbc-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-plugin-1.7.1_sr5.15-38.77.1
SUSE Linux Enterprise Server 12 SP5
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-alsa-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-jdbc-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-plugin-1.7.1_sr5.15-38.77.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-alsa-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-jdbc-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-plugin-1.7.1_sr5.15-38.77.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-alsa-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-jdbc-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-plugin-1.7.1_sr5.15-38.77.1
SUSE Linux Enterprise Software Development Kit 12 SP5
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
SUSE OpenStack Cloud 9
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-alsa-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-jdbc-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-plugin-1.7.1_sr5.15-38.77.1
SUSE OpenStack Cloud Crowbar 9
java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-alsa-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-devel-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-jdbc-1.7.1_sr5.15-38.77.1
java-1_7_1-ibm-plugin-1.7.1_sr5.15-38.77.1
Ссылки
- Link for SUSE-SU-2022:4591-1
- E-Mail link for SUSE-SU-2022:4591-1
- SUSE Security Ratings
- SUSE Bug 1204703
- SUSE Bug 1205302
- SUSE CVE CVE-2022-3676 page
Описание
In Eclipse Openj9 before version 0.35.0, interface calls can be inlined without a runtime type check. Malicious bytecode could make use of this inlining to access or modify memory via an incompatible type.
Затронутые продукты
Image SLES12-SP5-Azure-SAP-BYOS:java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-Azure-SAP-On-Demand:java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-EC2-SAP-BYOS:java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Image SLES12-SP5-EC2-SAP-On-Demand:java-1_7_1-ibm-1.7.1_sr5.15-38.77.1
Ссылки
- CVE-2022-3676
- SUSE Bug 1204703