Rocky Linux: RLSA-2024:4573 java-21-openjdk security update Security Advisories Updates
Summary
An update is available for java-21-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fix(es): * OpenJDK: RangeCheckElimination array index overflow (8323231) (CVE-2024-21147) * OpenJDK: potential UTF8 size overflow (8314794) (CVE-2024-21131) * OpenJDK: Excessive symbol length can lead to infinite loop (8319859) (CVE-2024-21138) * OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548) (CVE-2024-21140) * OpenJDK: Out-of-bounds access in 2D image handling (8324559) (CVE-2024-21145) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
RPMs
java-21-openjdk-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-1:21.0.4.0.7-1.el8.src.rpm
java-21-openjdk-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-debugsource-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-debugsource-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-demo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-demo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-demo-fastdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-demo-fastdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-demo-slowdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-demo-slowdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-devel-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-devel-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-devel-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-devel-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-devel-fastdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-devel-fastdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-devel-fastdebug-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-devel-fastdebug-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-devel-slowdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-devel-slowdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-devel-slowdebug-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-devel-slowdebug-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-fastdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-fastdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-fastdebug-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-fastdebug-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-headless-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-headless-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-headless-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-headless-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-headless-fastdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-headless-fastdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-headless-fastdebug-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-headless-fastdebug-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-headless-slowdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-headless-slowdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-headless-slowdebug-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-headless-slowdebug-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-javadoc-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-javadoc-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-javadoc-zip-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-javadoc-zip-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-jmods-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-jmods-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-jmods-fastdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-jmods-fastdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-jmods-slowdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-jmods-slowdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-slowdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-slowdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-slowdebug-debuginfo-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-slowdebug-debuginfo-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-src-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-src-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-src-fastdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-src-fastdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-src-slowdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-src-slowdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-static-libs-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-static-libs-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-static-libs-fastdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-static-libs-fastdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
java-21-openjdk-static-libs-slowdebug-1:21.0.4.0.7-1.el8.aarch64.rpm
java-21-openjdk-static-libs-slowdebug-1:21.0.4.0.7-1.el8.x86_64.rpm
References
No References
CVEs
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21145
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147
Fixes
https://bugzilla.redhat.com/show_bug.cgi?id=2297961
https://bugzilla.redhat.com/show_bug.cgi?id=2297962
https://bugzilla.redhat.com/show_bug.cgi?id=2297963
https://bugzilla.redhat.com/show_bug.cgi?id=2297976
https://bugzilla.redhat.com/show_bug.cgi?id=2297977