SUSE-SU-2023:0720-1

Опубликовано: 14 мар. 2023

Источник: suse-cvrf

Описание

Security update for java-1_8_0-openjdk

This update for java-1_8_0-openjdk fixes the following issues:

Updated to version jdk8u362 (icedtea-3.26.0):

CVE-2023-21830: Fixed improper restrictions in CORBA deserialization (bsc#1207249).
CVE-2023-21843: Fixed soundbank URL remote loading (bsc#1207248).

Список пакетов

Container containers/apache-tomcat:9-openjdk8

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

Image tomcat_15_6

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Enterprise Storage 7

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Enterprise Storage 7.1

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise Module for Legacy 15 SP4

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise Server 15 SP1-LTSS

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise Server 15 SP2-LTSS

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise Server 15 SP3-LTSS

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

openSUSE Leap 15.4

java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-accessibility-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-demo-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-devel-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-javadoc-1.8.0.362-150000.3.76.1

java-1_8_0-openjdk-src-1.8.0.362-150000.3.76.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230720-1/
Link for SUSE-SU-2023:0720-1
https://lists.suse.com/pipermail/sle-security-updates/2023-March/014035.html
E-Mail link for SUSE-SU-2023:0720-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1207248
SUSE Bug 1207248
https://bugzilla.suse.com/1207249
SUSE Bug 1207249
https://www.suse.com/security/cve/CVE-2023-21830/
SUSE CVE CVE-2023-21830 page
https://www.suse.com/security/cve/CVE-2023-21843/
SUSE CVE CVE-2023-21843 page

Описание

unknown

Затронутые продукты

Container containers/apache-tomcat:9-openjdk8:java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

Container containers/apache-tomcat:9-openjdk8:java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

Image tomcat_15_6:java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

Image tomcat_15_6:java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-21830.html
CVE-2023-21830
https://bugzilla.suse.com/1207249
SUSE Bug 1207249

Описание

unknown

Затронутые продукты

Container containers/apache-tomcat:9-openjdk8:java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

Container containers/apache-tomcat:9-openjdk8:java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

Image tomcat_15_6:java-1_8_0-openjdk-1.8.0.362-150000.3.76.1

Image tomcat_15_6:java-1_8_0-openjdk-headless-1.8.0.362-150000.3.76.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-21843.html
CVE-2023-21843
https://bugzilla.suse.com/1207248
SUSE Bug 1207248

SUSE-SU-2023:0720-1

Описание

Список пакетов

Container containers/apache-tomcat:9-openjdk8

Image tomcat_15_6

SUSE Enterprise Storage 7

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Module for Legacy 15 SP4

SUSE Linux Enterprise Server 15 SP1-LTSS

SUSE Linux Enterprise Server 15 SP2-LTSS

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

SUSE Linux Enterprise Server for SAP Applications 15 SP3

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2023-21830

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2023-21843

Описание

Затронутые продукты

Ссылки