Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

SUSE: Security Advisory (SUSE-SU-2021:3770-1)

Information

Severity

Severity

High

Family

Family

SuSE Local Security Checks

CVSSv2 Base

CVSSv2 Base

7.1

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:N/A:N

Solution Type

Solution Type

Vendor Patch

Created

Created

2 years ago

Modified

Modified

2 years ago

Summary

The remote host is missing an update for the 'java-1_8_0-openjdk' package(s) announced via the SUSE-SU-2021:3770-1 advisory.

Insight

Insight

This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 (October 2021 CPU): CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906).

Affected Software

Affected Software

'java-1_8_0-openjdk' package(s) on SUSE CaaS Platform 4.0, SUSE Enterprise Storage 6, SUSE Linux Enterprise Module for Legacy Software 15-SP2, SUSE Linux Enterprise Module for Legacy Software 15-SP3, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 15-SP1, SUSE Linux Enterprise Server for SAP 15, SUSE Linux Enterprise Server for SAP 15-SP1.

Detection Method

Detection Method

Checks if a vulnerable package version is present on the target host.

Solution

Solution

Please install the updated package(s).