Lucene search

K
oraclelinuxOracleLinuxELSA-2022-5709
HistoryJul 26, 2022 - 12:00 a.m.

java-1.8.0-openjdk security, bug fix, and enhancement update

2022-07-2600:00:00
linux.oracle.com
140

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

[1.8.0.342.b07-1.0.1]

  • Replace upstream references [Orabug: 34340145]
    [1:1.8.0.342.b07-1]
  • Update to shenandoah-jdk8u342-b07
  • Update release notes for shenandoah-8u342-b07.
  • Print release file during build, which should now include a correct SOURCE value from .src-rev
  • Update tarball script with IcedTea GitHub URL and .src-rev generation
  • Use ‘git apply’ with patches in the tarball script to allow binary diffs
  • Remove redundant ‘REPOS’ variable from tarball script
  • Include script to generate bug list for release notes
  • Update tzdata requirement to 2022a to match JDK-8283350
  • Rebase FIPS patches from fips branch and simplify by using a single patch from that repository
    • RH2036462: sun.security.pkcs11.wrapper.PKCS11.getInstance breakage
    • RH2090378: Revert to disabling system security properties and FIPS mode support together
  • Rebase RH1648249 nss.cfg patch so it applies after the FIPS patch
  • Perform configuration changes (e.g. nss.cfg, nss.fips.cfg, tzdb.dat) in installjdk
  • Enable system security properties in the RPM (now disabled by default in the FIPS repo)
  • Improve security properties test to check both enabled and disabled behaviour
  • Run security properties test with property debugging on
  • Explicitly require crypto-policies during build and runtime for system security properties
  • Resolves: rhbz#2099916
  • Resolves: rhbz#2107958
  • Resolves: rhbz#2084776
  • Resolves: rhbz#2106508
    [1:1.8.0.332.b09-2]
  • RH2007331: SecretKey generate/import operations don’t add the CKA_SIGN attribute in FIPS mode
  • Resolves: rhbz#2107956

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N