CLSA-2023:1688680011

[CLSA-2023:1688680011] java-1.8.0-openjdk: Fix of 7 CVEs

Type:

security

Severity:

Important

Release date:

2023-07-06

Description:

- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u372-b07. That fixes following CVEs:
- CVE-2023-21930: Improper connection handling during TLS handshake (8294474)
- CVE-2023-21937: Missing string checks for NULL characters (8296622)
- CVE-2023-21938: Incorrect handling of NULL characters in ProcessBuilder (8295304)
- CVE-2023-21939: Swing HTML parsing issue (8296832)
- CVE-2023-21954: Incorrect enqueue of references in garbage collector (8298191)
- CVE-2023-21967: Certificate validation issue in TLS session negotiation (8298310)
- CVE-2023-21968: Missing check for slash characters in URI-to-path conversion (8298667)
- Update tzdata requirement to 2023c to match JDK-8305113
- Include JDK-8271199 fix from the upcoming jdk8u382 in advance
- Remove patches which are not used

Updated packages:

java-1.8.0-openjdk-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:59c5f2b14848a817c0ad59827b6fa7a55113fb03
java-1.8.0-openjdk-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:2aa9b7a96c54d239342ccf773701d72875e3445d
java-1.8.0-openjdk-demo-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:610364116866c89c484d9d4361f11ce451f6388c
java-1.8.0-openjdk-demo-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:f92d711c8a1eb5a5d1ef31891b086069993d76fe
java-1.8.0-openjdk-devel-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:8ba5a0c99225cac8f27399da779718e97c8f9143
java-1.8.0-openjdk-devel-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:31d6a6071fee6cd60fd5fa8162bb685bef98a81e
java-1.8.0-openjdk-headless-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:4df4c4bf247cb54145c5fcb3ea7f2d102ecfdd28
java-1.8.0-openjdk-headless-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:8a31ca5de7765dc8b0314256be717fd8d5e4014d
java-1.8.0-openjdk-javadoc-1.8.0.372.b07-1.el6.tuxcare.els1.noarch.rpm
sha:02b0177f60d86959a95531853c4e1e4ddb4a804b
java-1.8.0-openjdk-javadoc-debug-1.8.0.372.b07-1.el6.tuxcare.els1.noarch.rpm
sha:b3d099eda451c597a3fa98e9e51f4f8c63eedce5
java-1.8.0-openjdk-src-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:3ef57da8a61b43204cd20bae2ab47d49e8c56302
java-1.8.0-openjdk-src-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:e045f5d5da5c4b2c274f47f5d1d89c1c928e0a8a

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.