Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 531
Alerts This Week
Warning Icon 1 531

SUSE: 2017:1445-1 Important: java-1_8_0-openjdk Security Issue

suse
Calendar Grey May 30, 2017
Scroller Suse Esm H88
Important patch issued for python3 in Fedora, resolving existing bugs and improving encryption measures.
An update that fixes 8 vulnerabilities is now available

Summary

This update for java-1_8_0-openjdk fixes the following issues: - Upgrade to version jdk8u131 (icedtea 3.4.0) - bsc#1034849 * Security fixes - S8163520, CVE-2017-3509: Reuse cache entries - S8163528, CVE-2017-3511: Better library loading - S8165626, CVE-2017-3512: Improved window framing - S8167110, CVE-2017-3514: Windows peering issue - S8168699: Validate special case invocations - S8169011, CVE-2017-3526: Resizing XML parse trees - S8170222, CVE-2017-3533: Better transfers of files - S8171121, CVE-2017-3539: Enhancing jar checking - S8171533, CVE-2017-3544: Better email transfer - S8172299: Improve class processing * New features - PR1969: Add AArch32 JIT port - PR3297: Allow Shenandoah to be used on AArch64 - PR3340: jstack.stp should support AArch64 * Import of OpenJDK 8 u131 build 11

References

#1034849

Cross- CVE-2017-3509 CVE-2017-3511 CVE-2017-3512

CVE-2017-3514 CVE-2017-3526 CVE-2017-3533

CVE-2017-3539 CVE-2017-3544

Affected Products:

SUSE Linux Enterprise Server for Raspberry Pi 12-SP2

SUSE Linux Enterprise Server 12-SP2

SUSE Linux Enterprise Desktop 12-SP2

https://www.suse.com/security/cve/CVE-2017-3509.html

https://www.suse.com/security/cve/CVE-2017-3511.html

https://www.suse.com/security/cve/CVE-2017-3512.html

https://www.suse.com/security/cve/CVE-2017-3514.html

https://www.suse.com/security/cve/CVE-2017-3526.html

https://www.suse.com/security/cve/CVE-2017-3533.html

https://www.suse.com/security/cve/CVE-2017-3539.html

https://www.suse.com/security/cve/CVE-2017-3544.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:1445-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.