CLSA-2022:1653506357

[CLSA-2022:1653506357] Fixed 5 CVEs in java-1.8.0-openjdk

Type:

security

Severity:

Important

Release date:

2022-05-25

Description:

- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u332-b09. That fixes following CVEs:
- CVE-2022-21476: Defective secure validation in Apache Santuario
- CVE-2022-21496: URI parsing inconsistencies
- CVE-2022-21434: Improper object-to-string conversion in AnnotationInvocationHandler
- CVE-2022-21426: Unbounded memory allocation when compiling crafted XPath expressions
- CVE-2022-21443: Missing check for negative ObjectIdentifier
- Remove patch files from previous change due to their presence in newer versions

Updated packages:

java-1.8.0-openjdk-accessibility-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:915dcc9a517d5341a45b2785c2add1d3a523f03e
java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:eab2fd4c732c692feb81ee6be27d475229015d24
java-1.8.0-openjdk-headless-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:d551654a1fdaf3d3357b8cd67a425a4c1846be57
java-1.8.0-openjdk-src-slowdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:82c8b2c56e8beb0bb4e996c5808c52452246c0a6
java-1.8.0-openjdk-demo-slowdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:95af3403c5fba54eb8c1771e6bd103de792a2e42
java-1.8.0-openjdk-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:7b9175a74d078b2fc49bc99730622c2ba21067d5
java-1.8.0-openjdk-headless-slowdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:833c80dda4fe21efe6490fd00d0d3d500b8fa9ad
java-1.8.0-openjdk-src-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:3d286088432dba746be21d2d2dfb315d0f67b3ba
java-1.8.0-openjdk-demo-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:007a6eae7d08b5e7aa258c4af44254849a995c1c
java-1.8.0-openjdk-devel-fastdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:3f2b3d3f6c59d33c13d4ee6fa4d120a54c55d5f2
java-1.8.0-openjdk-src-fastdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:e0ee1788723216c292c8832645550e455a8e9140
java-1.8.0-openjdk-slowdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:b80b4e52512b3799382780ebd1544ab170b0d15c
java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:7f6b336878788a70c967a99922abfe9c54229bf5
java-1.8.0-openjdk-demo-fastdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:123f1d7c941de626376eef33089240299e468e1b
java-1.8.0-openjdk-devel-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:403edca2feeeca53086828cb4365f7f07bf8f525
java-1.8.0-openjdk-devel-slowdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:54dd9b4fa89e7b5e521fb7e25dcd2030ae4ab25a
java-1.8.0-openjdk-headless-fastdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:637e00c2b6763bbd5fe74acec98873801512ff1b
java-1.8.0-openjdk-javadoc-1.8.0.332.b09-1.el8.tuxcare.els1.noarch.rpm
sha:c1e446728ec733620e8fe76ec583aed9f4044d24
java-1.8.0-openjdk-javadoc-zip-1.8.0.332.b09-1.el8.tuxcare.els1.noarch.rpm
sha:45b38a301cd6bb3ca5164af118fa2ed8d3f8a3ce
java-1.8.0-openjdk-fastdebug-1.8.0.332.b09-1.el8.tuxcare.els1.x86_64.rpm
sha:09dcdddbbb8c6eb3974269baf046506698d683d0

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.