Lucene search

K
oraclelinux
OracleLinuxELSA-2022-1442
HistoryApr 20, 2022 - 12:00 a.m.

java-11-openjdk security update

2022-04-2000:00:00
linux.oracle.com
38

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

[1:11.0.15.0.9-2]

  • Add JDK-8284920 fix for XPath regression
  • Related: rhbz#2073422
    [1:11.0.15.0.9-2]
  • Remove security items from release notes that were only in 17u and N/A for 11u
  • Related: rhbz#2073422
    [1:11.0.15.0.9-1]
  • Update to jdk-11.0.15.0+9
  • Update release notes to 11.0.15.0+9
  • Switch to GA mode for release
  • This tarball is embargoed until 2022-04-19 @ 1pm PT.
  • Resolves: rhbz#2073422
    [1:11.0.15.0.8-0.1.ea]
  • Update to jdk-11.0.15.0+8
  • Update release notes to 11.0.15.0+8
  • Switch to EA mode for 11.0.15 pre-release builds.
  • Rebase RH1996182 FIPS patch after JDK-8254410
  • Related: rhbz#2073422
Use Vulners API to create your own security tool

API usage cases
  • Network scanning
  • Linux Patch management
  • Threat protection
  • No network audit solution

Ways of integration

Integrate Vulners API

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

Related for ELSA-2022-1442