SUSE-SU-2021:3007-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:3007-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2021:3007-1
- Related
- Published
- 2021-09-09T13:22:06Z
- Modified
- 2021-09-09T13:22:06Z
- Summary
- Security update for java-1_7_0-openjdk
- Details
-
This update for java-170-openjdk fixes the following issues:
- Update to 2.6.27 - OpenJDK 7u311 (July 2021 CPU)
Security fixes:
- CVE-2021-2341: Improve file transfers (bsc#1188564)
- CVE-2021-2369: Better jar file validation (bsc#1188565)
- CVE-2021-2432: Provide better LDAP provider support (bsc#1188568)
- CVE-2021-2163: Enhance opening JARs (bsc#1185055)
- CVE-2021-2161: Less ambiguous processing (bsc#1185056)
- CVE-2018-3639: Fix revision to prefer
- References
-
- https://www.suse.com/support/update/announcement/2021/suse-su-20213007-1/
- https://bugzilla.suse.com/1185055
- https://bugzilla.suse.com/1185056
- https://bugzilla.suse.com/1188564
- https://bugzilla.suse.com/1188565
- https://bugzilla.suse.com/1188568
- https://www.suse.com/security/cve/CVE-2018-3639
- https://www.suse.com/security/cve/CVE-2021-2161
- https://www.suse.com/security/cve/CVE-2021-2163
- https://www.suse.com/security/cve/CVE-2021-2341
- https://www.suse.com/security/cve/CVE-2021-2369
- https://www.suse.com/security/cve/CVE-2021-2432
Affected packages
SUSE:Linux Enterprise Server 12 SP5 / java-1_7_0-openjdk
Package
- Name
- java-1_7_0-openjdk
- Purl
- purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5