Lucene search

K
mageiaGentoo FoundationMGASA-2022-0435
HistoryNov 25, 2022 - 1:21 a.m.

Updated java packages fix security vulnerability

2022-11-2501:21:24
Gentoo Foundation
advisories.mageia.org
20

0.002 Low

EPSS

Percentile

59.3%

Class compilation issue. (CVE-2022-21540) Improper restriction of MethodHandle.invokeBasic(). (CVE-2022-21541) Integer truncation issue in Xalan-J. (CVE-2022-34169) Improper MultiByte conversion can lead to buffer overflow. (CVE-2022-21618) Improper handling of long NTLM client hostnames. (CVE-2022-21619) Insufficient randomization of JNDI DNS port numbers. (CVE-2022-21624) Excessive memory allocation in X.509 certificate parsing. (CVE-2022-21626) HttpServer no connection count limit. (CVE-2022-21628) Missing SNI caching in HTTP/2. (CVE-2022-39399)

OSVersionArchitecturePackageVersionFilename
Mageia8noarchjava< 1.8.0-openjdk-1.8.0.352.b08-1.1java-1.8.0-openjdk-1.8.0.352.b08-1.1.mga8
Mageia8noarchjava< 11-openjdk-11.0.17.0.8-1.1java-11-openjdk-11.0.17.0.8-1.1.mga8
Mageia8noarchtimezone< 2022e-1timezone-2022e-1.mga8