Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

openSUSE Leap 15.1: 2019:2687-1 Important Update for java-1_8_0-openjdk

opensuse
Calendar Grey December 15, 2019
Dist Opensuse Esm H88
Download the recent openSUSE patch that resolves critical vulnerabilities in java-1_8_0-openjdk. This update comprises 17 security improvements.
An update that fixes 17 vulnerabilities is now available.

Description

This update for java-1_8_0-openjdk (jdk8u232/icedtea 3.14.0) fixes the

following issues:

Security issues fixed (bsc#1154212):

- CVE-2019-2933: Windows file handling redux

- CVE-2019-2945: Better socket support

- CVE-2019-2949: Better Kerberos ccache handling

- CVE-2019-2958: Build Better Processes

- CVE-2019-2964: Better support for patterns

- CVE-2019-2962: Better Glyph Images

- CVE-2019-2973: Better pattern compilation

- CVE-2019-2975: Unexpected exception in jjs

- CVE-2019-2978: Improved handling of jar files

- CVE-2019-2981: Better Path supports

- CVE-2019-2983: Better serial attributes

- CVE-2019-2987: Better rendering of native glyphs

- CVE-2019-2988: Better Graphics2D drawing

- CVE-2019-2989: Improve TLS connection support

- CVE-2019-2992: Enhance font glyph mapping

- CVE-2019-2999: Commentary on Javadoc comments

- CVE-2019-2894: Enhance ECDSA operations (bsc#1152856)

Bug fixes:

- Fixed build failuers on ARM...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.1:

zypper in -t patch openSUSE-2019-2687=1

Package List

- openSUSE Leap 15.1 (i586 x86_64):

java-1_8_0-openjdk-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-accessibility-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-debuginfo-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-debugsource-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-demo-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-demo-debuginfo-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-devel-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-devel-debuginfo-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-headless-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-headless-debuginfo-1.8.0.232-lp151.2.6.1

java-1_8_0-openjdk-src-1.8.0.232-lp151.2.6.1

- openSUSE Leap 15.1 (noarch):

java-1_8_0-openjdk-javadoc-1.8.0.232-lp151.2.6.1

References

https://www.suse.com/security/cve/CVE-2019-2894.html

https://www.suse.com/security/cve/CVE-2019-2933.html

https://www.suse.com/security/cve/CVE-2019-2945.html

https://www.suse.com/security/cve/CVE-2019-2949.html

https://www.suse.com/security/cve/CVE-2019-2958.html

https://www.suse.com/security/cve/CVE-2019-2962.html

https://www.suse.com/security/cve/CVE-2019-2964.html

https://www.suse.com/security/cve/CVE-2019-2973.html

https://www.suse.com/security/cve/CVE-2019-2975.html

https://www.suse.com/security/cve/CVE-2019-2978.html

https://www.suse.com/security/cve/CVE-2019-2981.html

https://www.suse.com/security/cve/CVE-2019-2983.html

https://www.suse.com/security/cve/CVE-2019-2987.html

https://www.suse.com/security/cve/CVE-2019-2988.html

https://www.suse.com/security/cve/CVE-2019-2989.html

https://www.suse.com/security/cve/CVE-2019-2992.html

https://www.suse.com/security/cve/CVE-2019-2999.html

https://bugzilla.suse.com/1138529

https://bugzilla.suse.com/1152856

https://bugzilla.suse.com/1154212

--

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2019:2687-1
Rating: important
Affected Products: openSUSE Leap 15.1

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here