Alerts This Week
Warning Icon 1 1,109
Alerts This Week
Warning Icon 1 1,109

SUSE: 2019:1211-1 Important: Java-1_8_0-Openjdk Security Fix

suse
Calendar Grey May 10, 2019
Dist Suse Esm H88
SUSE Security Patch resolves urgent vulnerabilities in python3-core, offering detailed solutions and guidelines.
An update that fixes four vulnerabilities is now available

Summary

This update for java-1_8_0-openjdk to version 8u212 fixes the following issues: Security issues fixed: - CVE-2019-2602: Better String parsing (bsc#1132728). - CVE-2019-2684: More dynamic RMI interactions (bsc#1132732). - CVE-2019-2698: Fuzzing TrueType fonts - setCurrGlyphID() (bsc#1132729). - CVE-2018-3639: fix revision to prefer PR_SPEC_DISABLE_NOEXEC to PR_SPEC_DISABLE Non-Security issue fixed: - Disable LTO (bsc#1133135). - Added Japanese new era name. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Packagehub Subpackages 15:

References

#1132728 #1132729 #1132732 #1133135

Cross- CVE-2018-3639 CVE-2019-2602 CVE-2019-2684

CVE-2019-2698

Affected Products:

SUSE Linux Enterprise Module for Packagehub Subpackages 15

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15

SUSE Linux Enterprise Module for Legacy Software 15

https://www.suse.com/security/cve/CVE-2018-3639.html

https://www.suse.com/security/cve/CVE-2019-2602.html

https://www.suse.com/security/cve/CVE-2019-2684.html

https://www.suse.com/security/cve/CVE-2019-2698.html

https://bugzilla.suse.com/1132728

https://bugzilla.suse.com/1132729

https://bugzilla.suse.com/1132732

https://bugzilla.suse.com/1133135

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2019:1211-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here