SUSE: 2024:1902-2 Important Update for Java Security Flaw CVE-2021-34813

suse

May 31, 2024

* bsc#1187446 * bsc#1224410 Cross-References: * CVE-2021-33813

Summary

## This update for Java fixes thefollowing issues: apiguardian was updated to vesion 1.1.2: * Added LICENSE/NOTICE to the generated jar * Allow @API to be declared at the package level * Explain usage of Status.DEPRECATED * Include OSGi metadata in manifest assertj-core was implemented at version 3.25.3: * New package implementation needed by Junit5 byte-buddy was updated to version v1.14.16: * `byte-buddy` is required by `assertj-core` * Changes in version v1.14.16: * Update ASM and introduce support for Java 23. * Changes in version v1.14.15: * Allow attaching from root on J9. * Changes of v1.14.14: * Adjust type validation to accept additional names that are legal in the class file format. * Fix dynamic attach on Windows when a service user is active. * Avoid failure when using Android's strict mode.

Topics Covered

security advisory security issue software update DoS important SUSE Java

References

* bsc#1187446

* bsc#1224410

Cross-

* CVE-2021-33813

CVSS scores:

* CVE-2021-33813 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-33813 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* Basesystem Module 15-SP5

* Basesystem Module 15-SP6

* Development Tools Module 15-SP5

* Development Tools Module 15-SP6

* openSUSE Leap 15.5

* openSUSE Leap 15.6

* SUSE Enterprise Storage 7.1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4

* SUSE Linux Enterprise Desktop 15 SP5

* SUSE Linux Enterprise Desktop 15 SP6

* SUSE Linux Enterprise High Performance Computing 15 SP2

* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2

* SUSE Linux Enterprise High Performance Computing 15 SP3

* SUSE Linux Enterprise High Performance Computing 15 SP4

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2024:1874-1

Rating: important

Topics Covered

security advisory security issue software update DoS important SUSE Java

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2024:1902-2 Important Update for Java Security Flaw CVE-2021-34813

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2024:1902-2 Important Update for Java Security Flaw CVE-2021-34813

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!