Headline

RHSA-2023:1908: Red Hat Security Advisory: java-1.8.0-openjdk security update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:

CVE-2023-21930: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).
CVE-2023-21937: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).
CVE-2023-21938: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).
CVE-2023-21939: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Swing). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).
CVE-2023-21954: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).
CVE-2023-21967: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVE-2023-21968: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).

1 year ago

Red Hat Security Data

Open in Source

#vulnerability #web #apple #linux #red_hat #js #java #oracle #graalvm #auth #ibm #ssl

Synopsis

Important: java-1.8.0-openjdk security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

Security Fix(es):

OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930)
OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939)
OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954)
OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967)
OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937)
OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938)
OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of OpenJDK Java must be restarted for this update to take effect.

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat CodeReady Linux Builder for x86_64 8 x86_64
Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
Red Hat CodeReady Linux Builder for ARM 64 8 aarch64

Fixes

BZ - 2187435 - CVE-2023-21930 OpenJDK: improper connection handling during TLS handshake (8294474)
BZ - 2187441 - CVE-2023-21954 OpenJDK: incorrect enqueue of references in garbage collector (8298191)
BZ - 2187704 - CVE-2023-21967 OpenJDK: certificate validation issue in TLS session negotiation (8298310)
BZ - 2187724 - CVE-2023-21939 OpenJDK: Swing HTML parsing issue (8296832)
BZ - 2187758 - CVE-2023-21938 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)
BZ - 2187790 - CVE-2023-21937 OpenJDK: missing string checks for NULL characters (8296622)
BZ - 2187802 - CVE-2023-21968 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

CVEs

CVE-2023-21930
CVE-2023-21937
CVE-2023-21938
CVE-2023-21939
CVE-2023-21954
CVE-2023-21967
CVE-2023-21968

Red Hat Enterprise Linux for x86_64 8

SRPM

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.src.rpm

SHA-256: 6e94f468fa2fc11c77392a6ba0bc0e7c1d2df339b947495fc181afc524c85951

x86_64

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 6d175e580fb1667a56c4a46f966112076350f02a83e91c69674b700118269ae5

java-1.8.0-openjdk-accessibility-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: f77057fb0b7fbc39af76a0a6c3c107ea4ba4ab1ed92515cd326f9bda6cba1ded

java-1.8.0-openjdk-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 56a65ba34bf9bc275e9e6d3da0e67ddf1d76e2062d8738836a6ac14268eceda1

java-1.8.0-openjdk-debugsource-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: f5ece4496d3d5e9863566d8baab010422fb37f7be56e603ad343209d9cee9140

java-1.8.0-openjdk-demo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 7c30953ab193a9da4f3d5165529fab6c67e09e76b6a487c859a6a8e4968c072b

java-1.8.0-openjdk-demo-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 0c4d9827435b5a0020bde2f21a6a52440c6eeb2724d1299125428d6718d41c3e

java-1.8.0-openjdk-devel-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: d6a1fb3cee7df06266bc1d4e0d1c623f3fffb6bc08ecaa2d9148f19ba2084ab1

java-1.8.0-openjdk-devel-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: dcfe749a820c34f0379b4845ffde89c2d791bd86d108ad0ef71395df3954eb75

java-1.8.0-openjdk-headless-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 893d795174e57145fd89508e684d20bfd2fb2a8f128c67ae38b3e06c147ce0af

java-1.8.0-openjdk-headless-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 3be19ae82f36f1833013b68e3711791a34ed2b47fe8b92e92cee723ded407800

java-1.8.0-openjdk-javadoc-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 28adbff0031f9e82f51f40ef047164961d728cf059f2cd413255e684f4815397

java-1.8.0-openjdk-javadoc-zip-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 10507d9930e5f11c59d48a0d2380fc6151d57b9b3a66121d73a5eccdd7c8fab6

java-1.8.0-openjdk-src-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 2f3c3b602d0dab93b3cdcbfbd9f412e5100a0c29321909bf2534eb1c50968f11

Red Hat Enterprise Linux for IBM z Systems 8

SRPM

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.src.rpm

SHA-256: 6e94f468fa2fc11c77392a6ba0bc0e7c1d2df339b947495fc181afc524c85951

s390x

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: cc421b640914ccf112a05a45d4a979c1e04bdf36ceda2576a3492a70c7b48aca

java-1.8.0-openjdk-accessibility-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: e93fda77f6489a65fdc65edd600c081845846e5c264d2763cdd5ff15bc32366d

java-1.8.0-openjdk-debuginfo-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 85dbe7697e6f3afb09fa169acae0016347599c8eac426c567427c249f045d3c0

java-1.8.0-openjdk-debugsource-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 8fe2eadd51d3704e7bfdf0d0739d3dc212e2cbfe39c69257b0bfe7b3c48a5775

java-1.8.0-openjdk-demo-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 6f08b422a0493e5422488cf30b5adbb3884f94e11ebcd9757d40d4f7a70a0f66

java-1.8.0-openjdk-demo-debuginfo-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 01d027bb4752218866b7e326f1c0cb33e149aa50217249eec6fbd18e56b1f079

java-1.8.0-openjdk-devel-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 7f13b99599a109c112c88b8db4bde051f52d053ba83174ea820054b0f842af28

java-1.8.0-openjdk-devel-debuginfo-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 4d24df71b6bfea6fceffc105add5ea0db90264a5aedd7e15111a8d424fabaa5e

java-1.8.0-openjdk-headless-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 1e48dc4cf9786f295a041aecfac0846ada4b90d8bfaeb948f5f581f567f11042

java-1.8.0-openjdk-headless-debuginfo-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: c93f56c566866f590ce21a559f532e3b7dee80e85e4bf655c12bd94b8fc4df89

java-1.8.0-openjdk-javadoc-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 28adbff0031f9e82f51f40ef047164961d728cf059f2cd413255e684f4815397

java-1.8.0-openjdk-javadoc-zip-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 10507d9930e5f11c59d48a0d2380fc6151d57b9b3a66121d73a5eccdd7c8fab6

java-1.8.0-openjdk-src-1.8.0.372.b07-1.el8_7.s390x.rpm

SHA-256: 6bb250100c2fbe2e46b66cd65a079bcdca777d4e5c2b2d6b8fe239d7a0f49266

Red Hat Enterprise Linux for Power, little endian 8

SRPM

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.src.rpm

SHA-256: 6e94f468fa2fc11c77392a6ba0bc0e7c1d2df339b947495fc181afc524c85951

ppc64le

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 3ac79539717009ac7f4c54e468b79dbf1def56da090a9f12753b3a195f2a172f

java-1.8.0-openjdk-accessibility-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: f79803aab62a5137d6024ddf3ee6d1c385156e176608d95708a170addb3b19f7

java-1.8.0-openjdk-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: c638c2783560f703d554909c0ebf52226435d906b39c0491f3c0eee6a62336d1

java-1.8.0-openjdk-debugsource-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 90775dc9ae01bfea4a20e3f7717c6509d9ecaf3aeeb93c9620de74cb5663fa91

java-1.8.0-openjdk-demo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 5535fc730f17708c0a605317f2ed401c7afd52bcfe43e4424fe319244ea33650

java-1.8.0-openjdk-demo-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 32b799365e52426498062087baa1e1cfa9207606253912483617c7ef509e2bd3

java-1.8.0-openjdk-devel-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 4e933e3bc71f231977942a1c64abe9ce7052994604c47cef418dde29dd6785f4

java-1.8.0-openjdk-devel-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: fdb8532b56df8ccd25f428f10d5db80807e519edb994997d69b3aae04cfbc738

java-1.8.0-openjdk-headless-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 376d11adecbc5d219b1be30295205870df7c1543c6ec87103acb65d97a07f4a6

java-1.8.0-openjdk-headless-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 5bad872a69ed2f18669908c9ff9881533ed04629d4d4534a8f69ad7b54b8dec4

java-1.8.0-openjdk-javadoc-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 28adbff0031f9e82f51f40ef047164961d728cf059f2cd413255e684f4815397

java-1.8.0-openjdk-javadoc-zip-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 10507d9930e5f11c59d48a0d2380fc6151d57b9b3a66121d73a5eccdd7c8fab6

java-1.8.0-openjdk-src-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: a690653b863c56b4d7512e5fe3a9865c1e438e78da8c6c4fe96807f54b8f47af

Red Hat Enterprise Linux for ARM 64 8

SRPM

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.src.rpm

SHA-256: 6e94f468fa2fc11c77392a6ba0bc0e7c1d2df339b947495fc181afc524c85951

aarch64

java-1.8.0-openjdk-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 0d308cfdec0a588454f6a48ff94ecf00f951ad90c38c7b175816a32e5797a79a

java-1.8.0-openjdk-accessibility-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 7f03f324acf0594f5dc2b40de57dd9c277c1cf141aba2004b6b09b476b0fb1fa

java-1.8.0-openjdk-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: d7c23a03826aa4eccf950e7975ecd57625be3852ba0c0f034a740327da49adc1

java-1.8.0-openjdk-debugsource-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: b7cd470ccfa0269e114cc1d33e45cd813019a5a018d4ebfbcc8a985841940436

java-1.8.0-openjdk-demo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 8f769b409dbdbf331e74ed1d38d09eccf49a6919ee320fe4385cb6488eedf658

java-1.8.0-openjdk-demo-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 4ab8ce8ec7b83001f2355a7a765d8c870295ce568f08c1382161859ff2150277

java-1.8.0-openjdk-devel-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: ebf6e62659f178cc06d83d533a6a090ee132ef0cc9eb3384805423f1be0c3a11

java-1.8.0-openjdk-devel-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: bfe2264e41caf520b3240f63516283293bc99a52ee1399e1b45d969a0eccb856

java-1.8.0-openjdk-headless-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 76f01f899a7ecaf9a38740c5a215887b5efa43bc40c4810a29ec6243174dc1b7

java-1.8.0-openjdk-headless-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 799efe708cb9c8f13aa11742eaa72bb2e18c1fe0c662bf2480bf6853303c6399

java-1.8.0-openjdk-javadoc-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 28adbff0031f9e82f51f40ef047164961d728cf059f2cd413255e684f4815397

java-1.8.0-openjdk-javadoc-zip-1.8.0.372.b07-1.el8_7.noarch.rpm

SHA-256: 10507d9930e5f11c59d48a0d2380fc6151d57b9b3a66121d73a5eccdd7c8fab6

java-1.8.0-openjdk-src-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 68165701632bba21a1fa8eeb02b4bd98b4dc7efe03e3b69e9de74f52cdb9117e

Red Hat CodeReady Linux Builder for x86_64 8

SRPM

x86_64

java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 64d6611d802e1b0b38f7deb0768e2dacce25be667977f965109e1b724602b4b0

java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 6346d89e89dc5b302597461be80ca5afac3672dc776aa1453a392831072ccd41

java-1.8.0-openjdk-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 56a65ba34bf9bc275e9e6d3da0e67ddf1d76e2062d8738836a6ac14268eceda1

java-1.8.0-openjdk-debugsource-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: f5ece4496d3d5e9863566d8baab010422fb37f7be56e603ad343209d9cee9140

java-1.8.0-openjdk-demo-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 0c4d9827435b5a0020bde2f21a6a52440c6eeb2724d1299125428d6718d41c3e

java-1.8.0-openjdk-demo-fastdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 78d41a6be84751cc54cd0a2a89afdceaa0c692f73ecfb446143de0d9db01f108

java-1.8.0-openjdk-demo-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 1db4cf310ccba5d91595d94c6517916df3233f5d106381304858de6162ca452e

java-1.8.0-openjdk-demo-slowdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 09ee66abf8a927688fb57d3f686ebb8560607cea72d7d6898f0d7b50da95910c

java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 587ba24d8a2d6253d9c88fedd211674a7a0f5c10a97d3113872d4e4bf88d253b

java-1.8.0-openjdk-devel-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: dcfe749a820c34f0379b4845ffde89c2d791bd86d108ad0ef71395df3954eb75

java-1.8.0-openjdk-devel-fastdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 6d32c7cd9658c3eec9d17d0512974cbab240ff3e71a0f152126bec10e44c635c

java-1.8.0-openjdk-devel-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: a9570cf90074c0a0bb70392966d990e4c61a79cf6647224bd77023d39d9be519

java-1.8.0-openjdk-devel-slowdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: baaea2ecff2c70d98cdf593a54dd89dc53271944e4d7c40806237cae4330c79f

java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 225aa9205c3badfc00eae9f4d4c2e9346640037ebd14f5ffac7c292ccb28fc9d

java-1.8.0-openjdk-fastdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 7f324bb98e64b2dbc9bf863d20a299e01f19dbf1469d61e4890659ba8ea96a1e

java-1.8.0-openjdk-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 223acfff325a60999fe8c27db4383e878013bd3a90fee625d09ef6daeacf52de

java-1.8.0-openjdk-headless-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 3be19ae82f36f1833013b68e3711791a34ed2b47fe8b92e92cee723ded407800

java-1.8.0-openjdk-headless-fastdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: c6bcd05e6d552db16bdda4d63e0400045ba451abcd4435c882f0de5d195175b7

java-1.8.0-openjdk-headless-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 7df5025cef4752abd6a9c3085ae9f126c9891b60c7521005f03b517adc9f8583

java-1.8.0-openjdk-headless-slowdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 44bfec1b7ccf1a13208d24a1c2acfaa967a2e7fcfc579c163f5c00c4764e52d7

java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: ae83273b27314ee7b689de6edb6fcb49372a0f28224f35aab44b33911cee5ee4

java-1.8.0-openjdk-slowdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 7c2a6364fad1430accbb9e48928a39297a014c775d1225baa86ed490aedd7d5f

java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 383f9893d76f9a21125c3538a8705abfd00bcc5a3c26fe64c4eec824bdeaf82b

java-1.8.0-openjdk-src-fastdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: 60a0f23c9d4a6c41e3313e05aa5795ff4276a51bb15663aa68054da05704844b

java-1.8.0-openjdk-src-slowdebug-1.8.0.372.b07-1.el8_7.x86_64.rpm

SHA-256: d009d3efd21a2c45056bcb31916f0ef60b9c3e61ea25ff79e7f3cbdca82647db

Red Hat CodeReady Linux Builder for Power, little endian 8

SRPM

ppc64le

java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 4ce9fe0b88f573f7e1304ff900371146887b2a7c37fac38d91b4e54986dac597

java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: f245cae6901e1da8706a24993903a250a1d37b4819d46802dd11c177c2dfc181

java-1.8.0-openjdk-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: c638c2783560f703d554909c0ebf52226435d906b39c0491f3c0eee6a62336d1

java-1.8.0-openjdk-debugsource-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 90775dc9ae01bfea4a20e3f7717c6509d9ecaf3aeeb93c9620de74cb5663fa91

java-1.8.0-openjdk-demo-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 32b799365e52426498062087baa1e1cfa9207606253912483617c7ef509e2bd3

java-1.8.0-openjdk-demo-fastdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 01807d768d3e19de3b3a9fad6e0ca62806b931ce8721e87a644588022f8003e7

java-1.8.0-openjdk-demo-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 0a0341052d9e86a828fd00c02f86f702f136a368eb0bfbc983c347900b73f850

java-1.8.0-openjdk-demo-slowdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 4733b783f445d54c2bb90b91f0255f08507c32778382d130362055a418069b6e

java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: f674fd06ec219bb17b84077d2a82cbc122b7acd6d605ab574bcdc1ee81fa31fe

java-1.8.0-openjdk-devel-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: fdb8532b56df8ccd25f428f10d5db80807e519edb994997d69b3aae04cfbc738

java-1.8.0-openjdk-devel-fastdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 01f7cda729d9aa0e3000a2becc02afe6dece146e915f6a18866bcbd4b4d1d8a0

java-1.8.0-openjdk-devel-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 960479dbd451cb94566f1c0f1a2544954f9803df2dd6a2ec128c178a4b7bc7a8

java-1.8.0-openjdk-devel-slowdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: d6efa48a48f39fb75b1d8bf0a120d7bcba774ae93d223f2daa60a8122eaadeb3

java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: be47090dcf47929d24bd954e57a2742887c288f0a9b3d1d53f414b64dc02bce0

java-1.8.0-openjdk-fastdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: e54512c777274ffa0d5df894a39713f8d42d26180ccdcd760285fc27448f4e4a

java-1.8.0-openjdk-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 4d499eed32a198cacc14ae143fcd4567e07f36a769f4243ecab17bbd95650ea9

java-1.8.0-openjdk-headless-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 5bad872a69ed2f18669908c9ff9881533ed04629d4d4534a8f69ad7b54b8dec4

java-1.8.0-openjdk-headless-fastdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 6a1c54655548de8f7f553d7aabec5dde93f39cc8937ce09905fa364655771079

java-1.8.0-openjdk-headless-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: ab40bffeea4c1b46b4ee343c1fdab73dec62d4f0da8a54bb853c0fc1ed17e587

java-1.8.0-openjdk-headless-slowdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 4ffdbf7cb9467a17b3132c4d5356b85c02cb734374f3bb91fff90d97929c77af

java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 21c7292241e12aeeae4a5b213be0cd62cb44dc26e642399de8878f95b5ad02db

java-1.8.0-openjdk-slowdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 7dc88152beb8bc6ad5908ae593ceab9ea17cec2e147fb4c6141338fbbadbbfe8

java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: 9c39334b5d0b6b2dd51b718177747db814c39f27a5a907a2a8f5a5ff27f2e8ec

java-1.8.0-openjdk-src-fastdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: e1efa7afc842da64b70a7a279d743e7398f9808ddd460e94f97996237aa3604e

java-1.8.0-openjdk-src-slowdebug-1.8.0.372.b07-1.el8_7.ppc64le.rpm

SHA-256: b8886808dea5287d6493daab166e630e149349e79387de343cddddf0fb55f835

Red Hat CodeReady Linux Builder for ARM 64 8

SRPM

aarch64

java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 807d2462367cde0b8e05853bbdefc6ea48c01b78ef8c095fd2e16ab2984a06d8

java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 094e65def9a6007551facb2128f079d969715216d0cbc6dc387b2e229b666348

java-1.8.0-openjdk-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: d7c23a03826aa4eccf950e7975ecd57625be3852ba0c0f034a740327da49adc1

java-1.8.0-openjdk-debugsource-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: b7cd470ccfa0269e114cc1d33e45cd813019a5a018d4ebfbcc8a985841940436

java-1.8.0-openjdk-demo-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 4ab8ce8ec7b83001f2355a7a765d8c870295ce568f08c1382161859ff2150277

java-1.8.0-openjdk-demo-fastdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 0e19cb06caefab7ccb039d841e882dbb4840658a5a9b40abf3ccca6cb3568aa6

java-1.8.0-openjdk-demo-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: d430c830cff13b0e5204c317a19f3b59da583842e9afbdb930cd35a901b18541

java-1.8.0-openjdk-demo-slowdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: a76b0af3d304937a083f0f13417347d4adeb1fadb49d9b4564faccfa65f86630

java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 85e1c6eba9e960a04e623e21d69b6f3829c4c7f0296e9405e66f9e15f93ec0de

java-1.8.0-openjdk-devel-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: bfe2264e41caf520b3240f63516283293bc99a52ee1399e1b45d969a0eccb856

java-1.8.0-openjdk-devel-fastdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 639eeb74896d9d47b3053e8f5958b6f94f4f2af00d11b01b50158fe798edd443

java-1.8.0-openjdk-devel-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 07871d5858eb9f0a0e10604e3c2ab5e94059ec65003f6a10d36523c94b9f0642

java-1.8.0-openjdk-devel-slowdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 092ea5379c952599179603c11825e9e77a95a6a06c50d0537108dd5493c64a37

java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: dfe85330f6ff691c0e717ca1ada16989526864ebadea7a60f2efbe97534b99c2

java-1.8.0-openjdk-fastdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 94c43df0fd8af24ff139beaf8d2de9963ef847218536463c7f38845a6bb763c5

java-1.8.0-openjdk-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 84db31c1676c9bd79ec5d5035a2a33481d3b3df51202cc58a0d77349e6945967

java-1.8.0-openjdk-headless-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 799efe708cb9c8f13aa11742eaa72bb2e18c1fe0c662bf2480bf6853303c6399

java-1.8.0-openjdk-headless-fastdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 92c3cac25ab178964c55a9115c4c57920e287deae3adb13b7b534303aaea2350

java-1.8.0-openjdk-headless-fastdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 4b0db9dd93bfd46ecc0fd62be68e5a93aa1aed6ccf10b49d2509a825f0bb5d42

java-1.8.0-openjdk-headless-slowdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: d51dd94fb294a267c5436883718a7fc315cd044e6618ad0c6279f8fa4aa2284d

java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: ac65d87ce69902028f58c7c2006b6e2f938a6a28efbbf28882bf570a5082bc3b

java-1.8.0-openjdk-slowdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: ce0bf64dbd1396eed6e104c6e62704b5a113212bf2c5fbf19d6a1b0fe011b5a5

java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: a3ae76f1561d8c3811e2f8fe7cc6d5357cc0837bc4e9900d45966485b5e32f88

java-1.8.0-openjdk-src-fastdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 19a5c97cc03d5d51ad46a06d40ba4a7867fbba9b1dffe2ced4489a99aedfc9dc

java-1.8.0-openjdk-src-slowdebug-1.8.0.372.b07-1.el8_7.aarch64.rpm

SHA-256: 735f0f6bcaaa8c73fb863b8dfa7bfaad693cadffcb2647019493e5407082e339

IBM Sterling Secure Proxy and IBM Sterling External Authentication Server 6.0.3 and 6.1.0 stores user credentials in plain clear text which can be read by a local user with container access. IBM X-Force ID: 255585.

1 year ago

CVE

Open in Source

#vulnerability #windows #linux #dos #apache #js #java #oracle #graalvm #buffer_overflow #auth #ibm

RHSA-2023:4103: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2023-21930: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability allows unauthenticated attacke...

1 year ago

Red Hat Security Data

Open in Source

#vulnerability #web #apple #linux #red_hat #nodejs #js #java #oracle #kubernetes #aws #graalvm #auth #ibm #ssl

Debian Security Advisory 5430-1

Debian Linux Security Advisory 5430-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service, information disclosure or bypass of sandbox restrictions.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #debian #dos #js #java

Ubuntu Security Notice USN-6077-1

Ubuntu Security Notice 6077-1 - Ben Smyth discovered that OpenJDK incorrectly handled half-duplex connections during TLS handshake. A remote attacker could possibly use this issue to insert, edit or obtain sensitive information. It was discovered that OpenJDK incorrectly handled certain inputs. An attacker could possibly use this issue to insert, edit or obtain sensitive information.

1 year ago

Packet Storm

Open in Source

#vulnerability #apple #ubuntu #dos #java #ssl

RHSA-2023:2710: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.3 for OpenShift image security update

A new image is available for Red Hat Single Sign-On 7.6.3, running on Red Hat OpenShift Container Platform from the release of 3.11 up to the release of 4.12.0. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-0341: In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction...

1 year ago

Red Hat Security Data

Open in Source

#vulnerability #web #android #linux #red_hat #dos #apache #java #perl #auth #ibm

Red Hat Security Advisory 2023-1891-01

Red Hat Security Advisory 2023-1891-01 - The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #java #ssl

Red Hat Security Advisory 2023-1909-01

Red Hat Security Advisory 2023-1909-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #java #sap #ssl

Red Hat Security Advisory 2023-1892-01

Red Hat Security Advisory 2023-1892-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #java #ssl

Red Hat Security Advisory 2023-1910-01

Red Hat Security Advisory 2023-1910-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #nodejs #js #java #sap #ssl

Red Hat Security Advisory 2023-1903-01

Red Hat Security Advisory 2023-1903-01 - The OpenJDK 8 packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 for portable Linux serves as a replacement for Red Hat build of OpenJDK 8 and includes security and bug fixes as well as enhancements. For further information, refer to the release notes linked to in the References section.

1 year ago

Packet Storm

Open in Source

#vulnerability #web #ios #linux #red_hat #js #java #ssl

Red Hat Security Advisory 2023-1905-01

Red Hat Security Advisory 2023-1905-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #java #sap #ssl

Red Hat Security Advisory 2023-1908-01

Red Hat Security Advisory 2023-1908-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #js #java #ssl

RHSA-2023:1903: Red Hat Security Advisory: OpenJDK 8u372 Security Update for Portable Linux Builds

An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2023-21930: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to compr...

1 year ago

Red Hat Security Data

Open in Source

#vulnerability #web #apple #linux #red_hat #js #java #oracle #graalvm #auth #ssl

RHSA-2023:1910: Red Hat Security Advisory: java-1.8.0-openjdk security and bug fix update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2023-21930: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploit vulnerability ...

1 year ago

Red Hat Security Data

Open in Source

#vulnerability #web #apple #linux #red_hat #js #java #oracle #graalvm #auth #ibm #sap #ssl

RHSA-2023:1905: Red Hat Security Advisory: java-1.8.0-openjdk security update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2023-21930: Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361...

1 year ago

Red Hat Security Data

Open in Source

#vulnerability #web #apple #linux #red_hat #nodejs #js #java #oracle #kubernetes #aws #graalvm #auth #sap #ssl

Red Hat Security Advisory 2023-1899-01

Red Hat Security Advisory 2023-1899-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #js #java #ssl

Red Hat Security Advisory 2023-1899-01

Red Hat Security Advisory 2023-1899-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.

1 year ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #js #java #ssl

Red Hat Security Advisory 2023-1879-01