SUSE-SU-2024:0321-1 -- SLES java-11-openjdkID: oval:org.secpod.oval:def:89051443 | Date: (C)2024-04-26 (M)2024-04-29 |
Class: PATCH | Family: unix |
This update for java-11-openjdk fixes the following issues: Updated to version 11.0.22 : * CVE-2024-20918: Fixed an out of bounds access in the Hotspot JVM due to a missing bounds check . * CVE-2024-20919: Fixed a sandbox bypass in the Hotspot JVM class file verifier . * CVE-2024-20921: Fixed an incorrect optimization in the Hotspot JVM that could lead to corruption of JVM memory . * CVE-2024-20926: Fixed arbitrary Java code execution in Nashorn . * CVE-2024-20945: Fixed a potential private key leak through debug logs . * CVE-2024-20952: Fixed an RSA padding issue and timing side-channel attack against TLS . Find the full release notes at: https://mail.openjdk.org/pipermail/jdk-updates-dev/2024-January/029215.html
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Desktop 15 SP5 |
SUSE Linux Enterprise Server 15 SP4 |
SUSE Linux Enterprise Server 15 SP5 |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Server 15 SP1 |