Mageia 9 MGASA-2024-0179: Security Updates for Java Versions
mageia
May 16, 2024
Long Exception message leading to crash
Summary
Long Exception message leading to crash. (CVE-2024-21011)
HTTP/2 client improper reverse DNS lookup. (CVE-2024-21012)
Integer overflow in C1 compiler address generation. (CVE-2024-21068)
Pack200 excessive memory allocation. (CVE-2024-21085)
C2 compilation fails with "Exceeded _node_regs array". (CVE-2024-21094)
References
- https://bugs.mageia.org/show_bug.cgi?id=33117
- https://access.redhat.com/errata/RHSA-2024:1817
- https://access.redhat.com/errata/RHSA-2024:1819
- https://access.redhat.com/errata/RHSA-2024:1823
- https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixJAVA
- https://www.cve.org/CVERecord?id=CVE-2024-21011
- https://www.cve.org/CVERecord?id=CVE-2024-21012
- https://www.cve.org/CVERecord?id=CVE-2024-21085
- https://www.cve.org/CVERecord?id=CVE-2024-21068
- https://www.cve.org/CVERecord?id=CVE-2024-21094
Topics Covered
Resolution
SRPMS
- 9/core/java-1.8.0-openjdk-1.8.0.412.b08-1.mga9
- 9/core/java-11-openjdk-11.0.23.0.9-1.mga9
- 9/core/java-17-openjdk-17.0.11.0.9-1.mga9
- 9/core/java-latest-openjdk-22.0.1.0.8-1.rolling.1.mga9
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Publication date: 16 May 2024
URL: https://advisories.mageia.org/MGASA-2024-0179.html
Type: security
CVE: CVE-2024-21011,
CVE-2024-21012,
CVE-2024-21085,
CVE-2024-21068,
CVE-2024-21094
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!