Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

openSUSE: 2021:1480-1 Important: java-11-openjdk Security Update

opensuse
Calendar Grey November 17, 2021
Dist Opensuse Esm H88
A crucial update for openSUSE resolves 10 vulnerabilities in java-11-openjdk. Safeguard your system's security and ensure its stability today.
An update that fixes 10 vulnerabilities is now available

Description

This update for java-11-openjdk fixes the following issues:

Update to 11.0.13+8 (October 2021 CPU)

- CVE-2021-35550, bsc#1191901: Update the default enabled cipher suites

preference

- CVE-2021-35565, bsc#1191909: com.sun.net.HttpsServer spins on TLS

session close

- CVE-2021-35556, bsc#1191910: Richer Text Editors - CVE-2021-35559, bsc#1191911: Enhanced style for RTF kit

- CVE-2021-35561, bsc#1191912: Better hashing support

- CVE-2021-35564, bsc#1191913: Improve Keystore integrity

- CVE-2021-35567, bsc#1191903: More Constrained Delegation

- CVE-2021-35578, bsc#1191904: Improve TLS client handshaking

- CVE-2021-35586, bsc#1191914: Better BMP support

- CVE-2021-35603, bsc#1191906: Better session identification

- Improve Stream handling for SSL

- Improve requests of certificates

- Correct certificate requests

- Enhance DTLS client handshake

This update was imported from the SUSE:SLE-15:Update update project.

Topics%20covered

Topics Covered

security advisory update patch important openSUSE java-11-openjdk cipher suites

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.2:

zypper in -t patch openSUSE-2021-1480=1

Package List

- openSUSE Leap 15.2 (i586 x86_64):

java-11-openjdk-11.0.13.0-lp152.2.21.2

java-11-openjdk-accessibility-11.0.13.0-lp152.2.21.2

java-11-openjdk-accessibility-debuginfo-11.0.13.0-lp152.2.21.2

java-11-openjdk-debugsource-11.0.13.0-lp152.2.21.2

java-11-openjdk-demo-11.0.13.0-lp152.2.21.2

java-11-openjdk-devel-11.0.13.0-lp152.2.21.2

java-11-openjdk-headless-11.0.13.0-lp152.2.21.2

java-11-openjdk-jmods-11.0.13.0-lp152.2.21.2

java-11-openjdk-src-11.0.13.0-lp152.2.21.2

- openSUSE Leap 15.2 (noarch):

java-11-openjdk-javadoc-11.0.13.0-lp152.2.21.2

References

https://www.suse.com/security/cve/CVE-2021-35550.html

https://www.suse.com/security/cve/CVE-2021-35556.html

https://www.suse.com/security/cve/CVE-2021-35559.html

https://www.suse.com/security/cve/CVE-2021-35561.html

https://www.suse.com/security/cve/CVE-2021-35564.html

https://www.suse.com/security/cve/CVE-2021-35565.html

https://www.suse.com/security/cve/CVE-2021-35567.html

https://www.suse.com/security/cve/CVE-2021-35578.html

https://www.suse.com/security/cve/CVE-2021-35586.html

https://www.suse.com/security/cve/CVE-2021-35603.html

https://bugzilla.suse.com/1191901

https://bugzilla.suse.com/1191903

https://bugzilla.suse.com/1191904

https://bugzilla.suse.com/1191906

https://bugzilla.suse.com/1191909

https://bugzilla.suse.com/1191910

https://bugzilla.suse.com/1191911

https://bugzilla.suse.com/1191912

https://bugzilla.suse.com/1191913

https://bugzilla.suse.com/1191914

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2021:1480-1
Rating: important
Affected Products: openSUSE Leap 15.2 .

Topics%20covered

Topics Covered

security advisory update patch important openSUSE java-11-openjdk cipher suites

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here