CLSA-2023:1688679628

[CLSA-2023:1688679628] java-1.8.0-openjdk: Fix of 7 CVEs

Type:

security

Severity:

Important

Release date:

2023-07-06

Description:

- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u372-b07. That fixes following CVEs:
- CVE-2023-21930: Improper connection handling during TLS handshake (8294474)
- CVE-2023-21937: Missing string checks for NULL characters (8296622)
- CVE-2023-21938: Incorrect handling of NULL characters in ProcessBuilder (8295304)
- CVE-2023-21939: Swing HTML parsing issue (8296832)
- CVE-2023-21954: Incorrect enqueue of references in garbage collector (8298191)
- CVE-2023-21967: Certificate validation issue in TLS session negotiation (8298310)
- CVE-2023-21968: Missing check for slash characters in URI-to-path conversion (8298667)
- Update tzdata requirement to 2023c to match JDK-8305113
- Include JDK-8271199 fix from the upcoming jdk8u382 in advance
- Remove patches which are not used

Updated packages:

java-1.8.0-openjdk-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:5faaf0bd55abe5bf216bc7a042ef2ed0cad470e7
java-1.8.0-openjdk-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:032fc1c2a2e9655d9e8410af23985e28f8824e4f
java-1.8.0-openjdk-demo-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:115f6adf150d4daf147123bcee06b6a3e6415dda
java-1.8.0-openjdk-demo-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:d42154b9db9d4579add944c7687bc3bd0dbf9fa3
java-1.8.0-openjdk-devel-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:022cc8236812376b556642375113aee82eb512cd
java-1.8.0-openjdk-devel-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:ece48975021efd97ba732b015a70779a19e6f4d4
java-1.8.0-openjdk-headless-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:f0d617ece53f9aedc6c85d9a109ab4f4f6dbfe06
java-1.8.0-openjdk-headless-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:e91f230f17a2c840543ce42642d91818c6cc9e04
java-1.8.0-openjdk-javadoc-1.8.0.372.b07-1.el6.tuxcare.els1.noarch.rpm
sha:09845d569b150200903de0c968b1b7647060b8c7
java-1.8.0-openjdk-javadoc-debug-1.8.0.372.b07-1.el6.tuxcare.els1.noarch.rpm
sha:096d8aacccc64763153f62eeaeb53493599d1ab3
java-1.8.0-openjdk-src-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:601f6fcb55a61145062a1430613e6caec4ca7c1f
java-1.8.0-openjdk-src-debug-1.8.0.372.b07-1.el6.tuxcare.els1.x86_64.rpm
sha:2768dc6d1e82dd8ce48158be7b784e2bb92944ff

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.