It was discovered that OpenJDK incorrectly verified Jar signatures. An attacker could possibly use this issue to bypass intended security restrictions when using Jar files signed with a disabled algorithm.
{ "availability": "No subscription required", "binaries": [ { "openjdk-8-jre-jamvm": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-doc": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-dbg": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-jdk-headless": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-demo": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-jre-zero": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-jre-dbgsym": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-source": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-jre-headless": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-jre-headless-dbgsym": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-jdk": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-jre": "8u292-b10-0ubuntu1~16.04.1", "openjdk-8-demo-dbgsym": "8u292-b10-0ubuntu1~16.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "openjdk-8-dbg": "8u292-b10-0ubuntu1~18.04", "openjdk-8-jdk-headless": "8u292-b10-0ubuntu1~18.04", "openjdk-8-demo": "8u292-b10-0ubuntu1~18.04", "openjdk-8-jre-zero": "8u292-b10-0ubuntu1~18.04", "openjdk-8-jre-headless": "8u292-b10-0ubuntu1~18.04", "openjdk-8-source": "8u292-b10-0ubuntu1~18.04", "openjdk-8-jdk": "8u292-b10-0ubuntu1~18.04", "openjdk-8-jre": "8u292-b10-0ubuntu1~18.04", "openjdk-8-doc": "8u292-b10-0ubuntu1~18.04" } ] }
{ "availability": "No subscription required", "binaries": [ { "openjdk-11-dbg": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-demo": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-source": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-jdk": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-doc": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-jdk-headless": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-jre-zero": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-jre": "11.0.11+9-0ubuntu2~18.04", "openjdk-11-jre-headless": "11.0.11+9-0ubuntu2~18.04" } ] }
{ "availability": "No subscription required", "binaries": [ { "openjdk-8-dbg": "8u292-b10-0ubuntu1~20.04", "openjdk-8-jdk-headless": "8u292-b10-0ubuntu1~20.04", "openjdk-8-demo": "8u292-b10-0ubuntu1~20.04", "openjdk-8-jre-zero": "8u292-b10-0ubuntu1~20.04", "openjdk-8-jre-headless": "8u292-b10-0ubuntu1~20.04", "openjdk-8-source": "8u292-b10-0ubuntu1~20.04", "openjdk-8-jdk": "8u292-b10-0ubuntu1~20.04", "openjdk-8-jre": "8u292-b10-0ubuntu1~20.04", "openjdk-8-doc": "8u292-b10-0ubuntu1~20.04" } ] }
{ "availability": "No subscription required", "binaries": [ { "openjdk-11-dbg": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-demo": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-source": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-jdk": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-doc": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-jdk-headless": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-jre-zero": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-jre": "11.0.11+9-0ubuntu2~20.04", "openjdk-11-jre-headless": "11.0.11+9-0ubuntu2~20.04" } ] }