Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

openSUSE Leap 42.2 openSUSE-SU-2017:1507-1 Important: OpenJDK Security

opensuse
Calendar Grey June 8, 2017
Dist Opensuse Esm H88
Significant patch for Fedora resolves 9 vulnerabilities in python3.8. Discover further details about this crucial notice.
An update that fixes 8 vulnerabilities is now available

Description

This update for java-1_8_0-openjdk fixes the following issues:

- Upgrade to version jdk8u131 (icedtea 3.4.0) - bsc#1034849

* Security fixes

- S8163520, CVE-2017-3509: Reuse cache entries

- S8163528, CVE-2017-3511: Better library loading

- S8165626, CVE-2017-3512: Improved window framing

- S8167110, CVE-2017-3514: Windows peering issue

- S8168699: Validate special case invocations

- S8169011, CVE-2017-3526: Resizing XML parse trees

- S8170222, CVE-2017-3533: Better transfers of files

- S8171121, CVE-2017-3539: Enhancing jar checking

- S8171533, CVE-2017-3544: Better email transfer

- S8172299: Improve class processing

* New features

- PR1969: Add AArch32 JIT port

- PR3297: Allow Shenandoah to be used on AArch64

- PR3340: jstack.stp should support AArch64

* Import of OpenJDK 8 u131 build 11

- S6474807: (smartcardio) CardTerminal.connect() throws CardException

...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security update patch important java security java openSUSE

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.2:

zypper in -t patch openSUSE-2017-662=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.2 (i586 x86_64):

java-1_8_0-openjdk-1.8.0.131-10.8.1

java-1_8_0-openjdk-accessibility-1.8.0.131-10.8.1

java-1_8_0-openjdk-debuginfo-1.8.0.131-10.8.1

java-1_8_0-openjdk-debugsource-1.8.0.131-10.8.1

java-1_8_0-openjdk-demo-1.8.0.131-10.8.1

java-1_8_0-openjdk-demo-debuginfo-1.8.0.131-10.8.1

java-1_8_0-openjdk-devel-1.8.0.131-10.8.1

java-1_8_0-openjdk-devel-debuginfo-1.8.0.131-10.8.1

java-1_8_0-openjdk-headless-1.8.0.131-10.8.1

java-1_8_0-openjdk-headless-debuginfo-1.8.0.131-10.8.1

java-1_8_0-openjdk-src-1.8.0.131-10.8.1

- openSUSE Leap 42.2 (noarch):

java-1_8_0-openjdk-javadoc-1.8.0.131-10.8.1

References

https://www.suse.com/security/cve/CVE-2017-3509.html

https://www.suse.com/security/cve/CVE-2017-3511.html

https://www.suse.com/security/cve/CVE-2017-3512.html

https://www.suse.com/security/cve/CVE-2017-3514.html

https://www.suse.com/security/cve/CVE-2017-3526.html

https://www.suse.com/security/cve/CVE-2017-3533.html

https://www.suse.com/security/cve/CVE-2017-3539.html

https://www.suse.com/security/cve/CVE-2017-3544.html

https://bugzilla.suse.com/1034849

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2017:1507-1
Rating: important
Affected Products: openSUSE Leap 42.2 .

Topics%20covered

Topics Covered

security advisory security update patch important java security java openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here