SUSE-SU-2023:0375-1

Опубликовано: 10 фев. 2023

Источник: suse-cvrf

Описание

Security update for java-1_8_0-ibm

This update for java-1_8_0-ibm fixes the following issues:

IBM Security Update November 2022: (bsc#1205302, bsc#1204703)

CVE-2022-3676: A security vulnerability was fixed in version 8.0.7.20, adding the reference here.

Список пакетов

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-BYOS-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-BYOS-EC2-HVM

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-BYOS-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-EC2-HVM

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP3-SAPCAL-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP3-SAPCAL-EC2-HVM

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP3-SAPCAL-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP-Azure-LI-BYOS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP-EC2

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAP-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAPCAL

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAPCAL-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAPCAL-EC2

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP4-SAPCAL-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAP-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAP-Azure-LI-BYOS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAP-EC2

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAP-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAPCAL-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAPCAL-EC2

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP5-SAPCAL-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP-Azure-LI-BYOS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP-Azure-LI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP-Azure-VLI-BYOS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP-EC2

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAP-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAPCAL

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAPCAL-Azure

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAPCAL-EC2

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP6-SAPCAL-GCE

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Enterprise Storage 6

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Enterprise Storage 7

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Enterprise Storage 7.1

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise Module for Legacy 15 SP4

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise Server 15 SP1-LTSS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise Server 15 SP2-LTSS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise Server 15 SP3-LTSS

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

openSUSE Leap 15.4

java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-32bit-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-alsa-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-demo-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-devel-32bit-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-plugin-1.8.0_sr7.20-150000.3.68.1

java-1_8_0-ibm-src-1.8.0_sr7.20-150000.3.68.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230375-1/
Link for SUSE-SU-2023:0375-1
https://lists.suse.com/pipermail/sle-security-updates/2023-February/013731.html
E-Mail link for SUSE-SU-2023:0375-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1204703
SUSE Bug 1204703
https://bugzilla.suse.com/1205302
SUSE Bug 1205302
https://www.suse.com/security/cve/CVE-2022-3676/
SUSE CVE CVE-2022-3676 page

Описание

In Eclipse Openj9 before version 0.35.0, interface calls can be inlined without a runtime type check. Malicious bytecode could make use of this inlining to access or modify memory via an incompatible type.

Затронутые продукты

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr7.20-150000.3.68.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-3676.html
CVE-2022-3676
https://bugzilla.suse.com/1204703
SUSE Bug 1204703

SUSE-SU-2023:0375-1

Описание

Список пакетов

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP2-SAP-Azure

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP2-SAP-BYOS-Azure

Image SLES15-SP2-SAP-BYOS-EC2-HVM

Image SLES15-SP2-SAP-BYOS-GCE

Image SLES15-SP2-SAP-EC2-HVM

Image SLES15-SP2-SAP-GCE

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP3-SAPCAL-Azure

Image SLES15-SP3-SAPCAL-EC2-HVM

Image SLES15-SP3-SAPCAL-GCE

Image SLES15-SP4-SAP

Image SLES15-SP4-SAP-Azure

Image SLES15-SP4-SAP-Azure-LI-BYOS

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

Image SLES15-SP4-SAP-Azure-VLI-BYOS

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP4-SAP-EC2

Image SLES15-SP4-SAP-GCE

Image SLES15-SP4-SAPCAL

Image SLES15-SP4-SAPCAL-Azure

Image SLES15-SP4-SAPCAL-EC2

Image SLES15-SP4-SAPCAL-GCE

Image SLES15-SP5-SAP-Azure

Image SLES15-SP5-SAP-Azure-LI-BYOS

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

Image SLES15-SP5-SAP-Azure-VLI-BYOS

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP5-SAP-EC2

Image SLES15-SP5-SAP-GCE

Image SLES15-SP5-SAPCAL-Azure

Image SLES15-SP5-SAPCAL-EC2

Image SLES15-SP5-SAPCAL-GCE

Image SLES15-SP6-SAP

Image SLES15-SP6-SAP-Azure

Image SLES15-SP6-SAP-Azure-LI-BYOS

Image SLES15-SP6-SAP-Azure-LI-BYOS-Production

Image SLES15-SP6-SAP-Azure-VLI-BYOS

Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP6-SAP-EC2

Image SLES15-SP6-SAP-GCE

Image SLES15-SP6-SAPCAL

Image SLES15-SP6-SAPCAL-Azure

Image SLES15-SP6-SAPCAL-EC2

Image SLES15-SP6-SAPCAL-GCE

SUSE Enterprise Storage 6

SUSE Enterprise Storage 7

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Module for Legacy 15 SP4

SUSE Linux Enterprise Server 15 SP1-LTSS

SUSE Linux Enterprise Server 15 SP2-LTSS

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

SUSE Linux Enterprise Server for SAP Applications 15 SP3

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2022-3676

Описание

Затронутые продукты

Ссылки