Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2023:3441-1

Опубликовано: 28 авг. 2023
Источник: suse-cvrf

Описание

Security update for java-1_8_0-ibm

This update for java-1_8_0-ibm fixes the following issues:

  • Update to Java 8.0 Service Refresh 8 Fix Pack 10 (bsc#1213541)
  • CVE-2022-40609: Fixed an unsafe deserialization flaw which could allow a remote attacker to execute arbitrary code on the system. (bsc#1213934)
  • CVE-2023-22041: Fixed a flaw whcih could allow unauthorized access to critical data or complete access. (bsc#1213475)
  • CVE-2023-22049: Fixed a flaw which could result in unauthorized update. (bsc#1213482)
  • CVE-2023-22045: Fixed a flaw which could result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. (bsc#1213481)
  • CVE-2023-22044: Fixed a flaw which could result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK accessible data. (bsc#1213479)
  • CVE-2023-22036: Fixed a flaw which could result in unauthorized ability to cause a partial denial of service. (bsc#1213474)
  • CVE-2023-25193: Fixed a flaw which could allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks. (bsc#1207922)
  • CVE-2023-22006: Fixed a flaw which could result in unauthorized update, insert or delete access for JDK accessible data. (bsc#1213473)

Список пакетов

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-EC2-HVM
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-GCE
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP-Azure
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP-EC2
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAP-GCE
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAPCAL
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAPCAL-Azure
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAPCAL-EC2
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP4-SAPCAL-GCE
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP5-SAPCAL-Azure
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP5-SAPCAL-EC2
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP5-SAPCAL-GCE
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP-Azure
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP-EC2
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAP-GCE
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAPCAL
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAPCAL-Azure
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAPCAL-EC2
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP6-SAPCAL-GCE
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP7-SAP-Azure-LI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP7-SAP-Azure-VLI-BYOS-Production
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP7-SAPCAL-Azure
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP7-SAPCAL-EC2
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP7-SAPCAL-GCE
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Enterprise Storage 7
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Enterprise Storage 7.1
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Module for Legacy 15 SP4
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Module for Legacy 15 SP5
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Server 15 SP1-LTSS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Server 15 SP2-LTSS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Server 15 SP3-LTSS
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
openSUSE Leap 15.4
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-32bit-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-demo-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-32bit-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-src-1.8.0_sr8.10-150000.3.80.1
openSUSE Leap 15.5
java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-32bit-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-alsa-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-demo-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-devel-32bit-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-plugin-1.8.0_sr8.10-150000.3.80.1
java-1_8_0-ibm-src-1.8.0_sr8.10-150000.3.80.1

Ссылки

Описание

IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw. By sending specially-crafted data, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 236069.

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки

Описание

unknown

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки

Описание

unknown

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки

Описание

unknown

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки

Описание

unknown

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки

Описание

unknown

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки

Описание

unknown

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки

Описание

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.

Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-1.8.0_sr8.10-150000.3.80.1
Image SLES15-SP3-SAPCAL-Azure:java-1_8_0-ibm-devel-1.8.0_sr8.10-150000.3.80.1
Ссылки
Уязвимость SUSE-SU-2023:3441-1