Lucene search
OracleLinuxELSA-2020-4347HistoryOct 27, 2020 - 12:00 a.m.
java-1.8.0-openjdk security update
2020-10-2700:00:00
linux.oracle.com
32
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
[1:1.8.0.272.b10-1]
- Add backport of JDK-8215727: ‘Restore JFR thread sampler loop to old / previous behaviour’
- Resolves: rhbz#1876665
[1:1.8.0.272.b10-0] - Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
[1:1.8.0.272.b09-0.1.ea] - Include a test in the RPM to check the build has the correct vendor information.
- Use ‘oj_’ prefix on new vendor globals to avoid a conflict with RPM’s vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665
[1:1.8.0.272.b09-0.1.ea] - Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
[1:1.8.0.272.b09-0.0.ea] - Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Switch to EA mode.
- Add debugging output for build.
- JFR must now be explicitly disabled when unwanted (e.g. x86), following switch of upstream default.
- Remove JDK-8154313 backport now applied upstream.
- Change target from ‘zip-docs’ to ‘docs-zip’, which is the naming used upstream.
- Update tarball generation script to use PR3795, following inclusion of JDK-8177334
- Add additional s390 size_t case in g1ConcurrentMarkObjArrayProcessor.cpp introduced by JDK-8057003
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Remove JDK-8165996/PR3506/RH1760437 as now applied upstream.
- Resolves: rhbz#1876665
Related
nessus
nessus
RHEL 8 : java-11-openjdk (RHSA-2020:4306)
2020-10-22 00:00:00
CentOS 7 : java-1.8.0-openjdk (CESA-2020:4350)
2020-11-06 00:00:00
RHEL 8 : java-11-openjdk (RHSA-2020:4316)
2020-10-22 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0418)
2022-01-28 00:00:00
CentOS: Security Advisory for java (CESA-2020:4348)
2020-11-10 00:00:00
redhat
redhat
(RHSA-2020:4349) Moderate: java-1.8.0-openjdk security update
2020-10-26 19:47:32
(RHSA-2020:4307) Moderate: java-11-openjdk security update
2020-10-22 10:29:24
(RHSA-2020:4348) Moderate: java-1.8.0-openjdk security update
2020-10-26 19:47:30
mageia
mageia
Updated java-1.8.0-openjdk packages fix security vulnerabilities
2020-11-14 00:20:36
centos
centos
java security update
2020-11-06 21:58:30
java security update
2020-11-09 13:12:26
java security update
2020-11-06 21:59:28
amazon
amazon
Medium: java-1.8.0-openjdk
2021-01-12 22:51:00
Medium: java-1.8.0-openjdk
2021-01-05 23:34:00
Medium: java-1.8.0-openjdk
2020-12-16 20:31:00
oraclelinux
oraclelinux
java-11-openjdk security and bug fix update
2020-10-22 00:00:00
java-1.8.0-openjdk security and bug fix update
2020-10-27 00:00:00
java-11-openjdk security update
2020-10-23 00:00:00
suse
suse
Security update for java-11-openjdk (moderate)
2020-11-21 00:00:00
Security update for java-11-openjdk (moderate)
2020-11-21 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: java-1.8.0-openjdk-1.8.0.272.b10-0.fc33
2020-10-26 01:07:14
[SECURITY] Fedora 31 Update: java-11-openjdk-11.0.9.11-0.fc31
2020-10-31 02:02:15
[SECURITY] Fedora 32 Update: java-1.8.0-openjdk-1.8.0.272.b10-0.fc32
2020-10-31 02:02:10
osv
osv
openjdk-11 - security update
2020-10-25 00:00:00
openjdk-8, openjdk-lts vulnerabilities
2020-10-27 23:15:43
openjdk-8, openjdk-lts regressions
2020-11-12 21:58:30
ubuntu
ubuntu
OpenJDK vulnerabilities
2020-10-27 00:00:00
OpenJDK regressions
2020-11-12 00:00:00
kaspersky
kaspersky
KLA11985 Multiple vulnerabilities in Oracle Java SE
2020-10-20 00:00:00
debian
debian
[SECURITY] [DLA 2412-1] openjdk-8 security update
2020-10-30 09:23:09
[SECURITY] [DSA 4779-1] openjdk-11 security update
2020-10-25 10:14:25
ibm
ibm
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2021-03-15 10:22:29
gentoo
gentoo
OpenJDK: Multiple vulnerabilities
2021-01-25 00:00:00
f5
f5
K000135534 : Java vulnerabilities CVE-2020-14779, CVE-2020-14782
2023-07-19 00:00:00
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
Related for ELSA-2020-4347