openSUSE Leap 15.5: 2024:0479-1 Important: Java Security Update

opensuse

February 15, 2024

This update for java-1_8_0-openj9 fixes the following issues: Update to OpenJDK 8u402 build 06 with OpenJ9 0.43.0 virtual machine

Description

This update for java-1_8_0-openj9 fixes the following issues:

Update to OpenJDK 8u402 build 06 with OpenJ9 0.43.0 virtual machine

* Including OpenJ9 0.41.0 fixes of CVE-2023-5676, bsc#1217214

* CVE-2024-20918 (bsc#1218907), CVE-2024-20919 (bsc#1218903), CVE-2024-20921

(bsc#1218905), CVE-2024-20926 (bsc#1218906), CVE-2024-20945 (bsc#1218909),

CVE-2024-20952 (bsc#1218911)

Topics Covered

security advisory software update important fix java security system vulnerabilities openSUSE

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* SUSE Package Hub 15 15-SP5

zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-479=1

* openSUSE Leap 15.5

zypper in -t patch openSUSE-SLE-15.5-2024-479=1

Package List

* SUSE Package Hub 15 15-SP5 (ppc64le s390x)

* java-1_8_0-openj9-debugsource-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-demo-debuginfo-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-src-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-headless-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-devel-debuginfo-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-accessibility-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-demo-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-devel-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-headless-debuginfo-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-debuginfo-1.8.0.402-150200.3.42.1

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)

* java-1_8_0-openj9-debugsource-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-demo-debuginfo-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-src-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-headless-1.8.0.402-150200.3.42.1

* java-1_8_0-openj9-devel-debuginfo-1.8.0.402-150200.3.42.1

*...

Read the Full Advisory

References

* bsc#1217214

* bsc#1218903

* bsc#1218905

* bsc#1218906

* bsc#1218907

* bsc#1218909

* bsc#1218911

## References:

* https://www.suse.com/security/cve/CVE-2023-5676.html

* https://www.suse.com/security/cve/CVE-2024-20918.html

* https://www.suse.com/security/cve/CVE-2024-20919.html

* https://www.suse.com/security/cve/CVE-2024-20921.html

* https://www.suse.com/security/cve/CVE-2024-20926.html

* https://www.suse.com/security/cve/CVE-2024-20945.html

* https://www.suse.com/security/cve/CVE-2024-20952.html

* https://bugzilla.suse.com/show_bug.cgi?id=1217214

* https://bugzilla.suse.com/show_bug.cgi?id=1218903

* https://bugzilla.suse.com/show_bug.cgi?id=1218905

* https://bugzilla.suse.com/show_bug.cgi?id=1218906

* https://bugzilla.suse.com/show_bug.cgi?id=1218907

* https://bugzilla.suse.com/show_bug.cgi?id=1218909

* https://bugzilla.suse.com/show_bug.cgi?id=1218911

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2024:0479-1

Rating: important

Topics Covered

security advisory software update important fix java security system vulnerabilities openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks