SUSE-SU-2023:0752-1

Опубликовано: 16 мар. 2023

Источник: suse-cvrf

Описание

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues:

CVE-2023-21843: Fixed soundbank URL remote loading (bsc#1207248).
CVE-2023-21835: Fixed handshake DoS attack against DTLS connections (bsc#1207246).

Bugfixes:

Remove broken accessibility sub-package (bsc#1206549).

Список пакетов

Container bci/openjdk-devel:11

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Container bci/openjdk:11

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Container containers/apache-tomcat:10.1-openjdk11

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Container containers/apache-tomcat:9-openjdk11

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Container suse/manager/5.0/x86_64/server-attestation:latest

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-Azure-llc

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-Azure-ltd

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-BYOS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-EC2-llc

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Image SLES15-SP4-Manager-Server-4-3-EC2-ltd

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Enterprise Storage 7

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Enterprise Storage 7.1

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Module for Basesystem 15 SP4

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Module for Package Hub 15 SP4

java-11-openjdk-javadoc-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Real Time 15 SP3

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Server 15 SP1-LTSS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Server 15 SP2-LTSS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Server 15 SP3-LTSS

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Manager Proxy 4.2

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

SUSE Manager Server 4.2

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

openSUSE Leap 15.4

java-11-openjdk-11.0.18.0-150000.3.93.1

java-11-openjdk-demo-11.0.18.0-150000.3.93.1

java-11-openjdk-devel-11.0.18.0-150000.3.93.1

java-11-openjdk-headless-11.0.18.0-150000.3.93.1

java-11-openjdk-javadoc-11.0.18.0-150000.3.93.1

java-11-openjdk-jmods-11.0.18.0-150000.3.93.1

java-11-openjdk-src-11.0.18.0-150000.3.93.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230752-1/
Link for SUSE-SU-2023:0752-1
https://lists.suse.com/pipermail/sle-security-updates/2023-March/014063.html
E-Mail link for SUSE-SU-2023:0752-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1206549
SUSE Bug 1206549
https://bugzilla.suse.com/1207246
SUSE Bug 1207246
https://bugzilla.suse.com/1207248
SUSE Bug 1207248
https://www.suse.com/security/cve/CVE-2023-21835/
SUSE CVE CVE-2023-21835 page
https://www.suse.com/security/cve/CVE-2023-21843/
SUSE CVE CVE-2023-21843 page

Описание

unknown

Затронутые продукты

Container bci/openjdk-devel:11:java-11-openjdk-11.0.18.0-150000.3.93.1

Container bci/openjdk-devel:11:java-11-openjdk-devel-11.0.18.0-150000.3.93.1

Container bci/openjdk-devel:11:java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Container bci/openjdk:11:java-11-openjdk-11.0.18.0-150000.3.93.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-21835.html
CVE-2023-21835
https://bugzilla.suse.com/1207246
SUSE Bug 1207246

Описание

unknown

Затронутые продукты

Container bci/openjdk-devel:11:java-11-openjdk-11.0.18.0-150000.3.93.1

Container bci/openjdk-devel:11:java-11-openjdk-devel-11.0.18.0-150000.3.93.1

Container bci/openjdk-devel:11:java-11-openjdk-headless-11.0.18.0-150000.3.93.1

Container bci/openjdk:11:java-11-openjdk-11.0.18.0-150000.3.93.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-21843.html
CVE-2023-21843
https://bugzilla.suse.com/1207248
SUSE Bug 1207248

SUSE-SU-2023:0752-1

Описание

Список пакетов

Container bci/openjdk-devel:11

Container bci/openjdk:11

Container containers/apache-tomcat:10.1-openjdk11

Container containers/apache-tomcat:9-openjdk11

Container suse/manager/5.0/x86_64/server-attestation:latest

Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure

Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM

Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE

Image SLES15-SP4-Manager-Server-4-3

Image SLES15-SP4-Manager-Server-4-3-Azure-llc

Image SLES15-SP4-Manager-Server-4-3-Azure-ltd

Image SLES15-SP4-Manager-Server-4-3-BYOS

Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure

Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2

Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE

Image SLES15-SP4-Manager-Server-4-3-EC2-llc

Image SLES15-SP4-Manager-Server-4-3-EC2-ltd

SUSE Enterprise Storage 7

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Module for Basesystem 15 SP4

SUSE Linux Enterprise Module for Package Hub 15 SP4

SUSE Linux Enterprise Real Time 15 SP3

SUSE Linux Enterprise Server 15 SP1-LTSS

SUSE Linux Enterprise Server 15 SP2-LTSS

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

SUSE Linux Enterprise Server for SAP Applications 15 SP3

SUSE Manager Proxy 4.2

SUSE Manager Server 4.2

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2023-21835

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2023-21843

Описание

Затронутые продукты

Ссылки