Lucene search

K
oraclelinuxOracleLinuxELSA-2022-7008
HistoryOct 21, 2022 - 12:00 a.m.

java-11-openjdk security and bug fix update

2022-10-2100:00:00
linux.oracle.com
10

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

[1:11.0.17.0.8-2.0.1]

  • link atomic for ix86 build
    [1:11.0.17.0.8-2]
  • Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
  • Update CLDR data with Europe/Kyiv (JDK-8293834)
  • Drop JDK-8292223 patch which we found to be unnecessary
  • Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
  • Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
  • Related: rhbz#2133695
    [1:11.0.17.0.8-1]
  • Update to jdk-11.0.17+8 (GA)
  • Update release notes to 11.0.17+8
  • Switch to GA mode for release
  • Resolves: rhbz#2133695
    [1:11.0.17.0.7-0.1.ea]
  • Update to jdk-11.0.17+7
  • Update release notes to 11.0.17+7
  • Resolves: rhbz#2130373
    [1:11.0.17.0.1-0.1.ea]
  • Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
  • Related: rhbz#2130373
    [1:11.0.17.0.1-0.1.ea]
  • Include Aleksey’s patch for JDK-8291053 to try and get HarfBuzz to build again
  • Related: rhbz#2130373
    [1:11.0.17.0.1-0.1.ea]
  • Update to jdk-11.0.17+1
  • Update release notes to 11.0.17+1
  • Switch to EA mode for 11.0.17 pre-release builds.
  • Related: rhbz#2130373

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Related for ELSA-2022-7008