SUSE-SU-2022:1474-1
- Source
- https://www.suse.com/support/update/announcement/2022/suse-su-20221474-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:1474-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2022:1474-1
- Related
- Published
- 2022-04-29T15:30:54Z
- Modified
- 2022-04-29T15:30:54Z
- Summary
- Security update for java-11-openjdk
- Details
-
This update for java-11-openjdk fixes the following issues:
- CVE-2022-21426: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198672).
- CVE-2022-21434: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198674).
- CVE-2022-21496: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198673).
- CVE-2022-21443: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198675).
- CVE-2022-21476: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198671).
- References
-
- https://www.suse.com/support/update/announcement/2022/suse-su-20221474-1/
- https://bugzilla.suse.com/1198671
- https://bugzilla.suse.com/1198672
- https://bugzilla.suse.com/1198673
- https://bugzilla.suse.com/1198674
- https://bugzilla.suse.com/1198675
- https://www.suse.com/security/cve/CVE-2022-21426
- https://www.suse.com/security/cve/CVE-2022-21434
- https://www.suse.com/security/cve/CVE-2022-21443
- https://www.suse.com/security/cve/CVE-2022-21476
- https://www.suse.com/security/cve/CVE-2022-21496
Affected packages
SUSE:Linux Enterprise Server 12 SP5 / java-11-openjdk
Package
- Name
- java-11-openjdk
- Purl
- purl:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5