Release Info

Advisory: CLSA-2024:1706696899

OS: CentOS 8.5 ELS

Public date: 2024-01-31 05:28:22

Project: java-1.8.0-openjdk

Version: 1.8.0.402.b06-1.el8.tuxcare.els1

Errata link: https://errata.cloudlinux.com/centos8.5-els/CLSA-2024-1706696899.html

Changelog

- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u402-b06. That fixes following CVEs: - CVE-2024-20918: Array out-of-bounds access due to missing range check in C1 compiler - CVE-2024-20919: JVM class file verifier flaw allows unverified bytecode execution - CVE-2024-20921: Range check loop optimization issue - CVE-2024-20926: Arbitrary Java code execution in Nashorn - CVE-2024-20945: Logging of digital signature private keys - CVE-2024-20952: RSA padding issue and timing side-channel attack against TLS - CVE-2023-22067: IOR deserialization issue in CORBA (fixed in jdk8u392) - CVE-2023-22081: Certificate path validation issue during client authentication (fixed in jdk8u392) - Adapt pr2462 patch to the new sources

Update

Update command: dnf update java-1.8.0-openjdk*

Packages list

java-1.8.0-openjdk-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-demo-fastdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-devel-fastdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-fastdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-headless-fastdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-javadoc-1.8.0.402.b06-1.el8.tuxcare.els1.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.402.b06-1.el8.tuxcare.els1.noarch.rpm java-1.8.0-openjdk-slowdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-src-fastdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.402.b06-1.el8.tuxcare.els1.x86_64.rpm

CVEs

CVE-2023-22067
CVE-2024-20926
CVE-2024-20918
CVE-2024-20952
CVE-2024-20945
CVE-2024-20919
CVE-2024-20921
CVE-2023-22081