SUSE-SU-2021:3770-1 -- SLES java-1_8_0-openjdkID: oval:org.secpod.oval:def:89045788 | Date: (C)2021-11-25 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 : - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS . - CVE-2021-35556: Fixed excessive memory allocation in RTFParser . - CVE-2021-35559: Fixed excessive memory allocation in RTFReader . - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet . - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore . - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close . - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation . - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake . - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader . - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes .
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Server 15 SP1 |
Product: |
java-1_8_0-openjdk |