Lucene search
Basic search
Lucene search
Search by product
Subscribe
K
Start 30-day trial
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
SIGN IN
OracleLinux
ELSA-2023-5736
History
Oct 19, 2023 - 12:00 a.m.
java-11-openjdk security and bug fix update
Vulners
Oraclelinux
java-11-openjdk security and bug fix update
2023-10-19
00:00:00
linux.oracle.com
25
openjdk
security update
bug fix
system crypto policy
rhel-12217
rhel-12910
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.8%
JSON
[1:11.0.21.0.9-1.0.1]
link atomic for ix86 build
[1:11.0.21.0.9-1]
Update to jdk-11.0.21+9 (GA)
Update release notes to 11.0.21+9
Remove system crypto policy patch which doesn’t belong on RHEL 7 with no system policies
Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
Update bug URL for RHEL to point to the Red Hat customer portal
Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
Apply all patches using -p1
Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
Add missing JFR alternative ghost
Move jcmd to the headless package
Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
Disable the serviceability agent on Zero architectures even when the architecture itself is supported
This tarball is embargoed until 2023-10-17 @ 1pm PT.
Resolves: RHEL-12217
Resolves: RHEL-12910
Resolves: RHEL-12913
Resolves: RHEL-11320
Resolves: RHEL-13227
Resolves: RHEL-13217
[1:11.0.21.0.9-1]
For non debug subpackages, ghosted all alternatives (rhbz1649776)
For non system JDKs, if-outed versionless provides.
Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
Related: RHEL-11320
[1:11.0.20.1.1-1]
Update to jdk-11.0.20.1+1 (GA)
Update release notes to 11.0.20.1+1
Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
Update openjdk_news script to specify subdirectory last
Add missing discover_trees script required by openjdk_news
Synchronise runtime and buildtime tzdata requirements
Update
README.md
to match the version in later RHEL releases
Resolves: rhbz#2236229
Affected Package
OS
Version
Architecture
Package
Version
Filename
oracle linux
7
src
java-11-openjdk
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-11.0.21.0.9-1.0.1.el7_9.src.rpm
oracle linux
7
src
java-11-openjdk
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-11.0.21.0.9-1.0.1.el7_9.src.rpm
oracle linux
7
src
java-11-openjdk
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-11.0.21.0.9-1.0.1.el7_9.src.rpm
oracle linux
7
aarch64
java-11-openjdk
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-11.0.21.0.9-1.0.1.el7_9.aarch64.rpm
oracle linux
7
aarch64
java-11-openjdk
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-11.0.21.0.9-1.0.1.el7_9.aarch64.rpm
oracle linux
7
aarch64
java-11-openjdk-demo
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-demo-11.0.21.0.9-1.0.1.el7_9.aarch64.rpm
oracle linux
7
aarch64
java-11-openjdk-devel
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-devel-11.0.21.0.9-1.0.1.el7_9.aarch64.rpm
oracle linux
7
aarch64
java-11-openjdk-devel
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-devel-11.0.21.0.9-1.0.1.el7_9.aarch64.rpm
oracle linux
7
aarch64
java-11-openjdk-headless
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-headless-11.0.21.0.9-1.0.1.el7_9.aarch64.rpm
oracle linux
7
aarch64
java-11-openjdk-headless
< 11.0.21.0.9-1.0.1.el7_9
java-11-openjdk-headless-11.0.21.0.9-1.0.1.el7_9.aarch64.rpm
Rows per page:
10
1-10 of 48
1
Related
nessus 68
rocky 1
osv 13
veracode 1
oraclelinux 9
openvas 15
alpinelinux 1
redhat 29
ibm 36
cvelist 1
debiancve 1
debian 3
almalinux 6
ubuntucve 1
nvd 1
redhatcve 1
prion 1
cve 1
amazon 4
centos 2
f5 1
ubuntu 1
mageia 1
kaspersky 1
nessus
nessus
68
RHEL 9 : java-11-openjdk (RHSA-2023:5743)
2023-10-18 00:00:00
Amazon Linux 2023 : java-11-amazon-corretto, java-11-amazon-corretto-devel, java-11-amazon-corretto-headless (ALAS2023-2023-401)
2023-10-24 00:00:00
Oracle Linux 9 : java-11-openjdk (ELSA-2023-5744)
2023-10-27 00:00:00
rocky
rocky
java-11-openjdk security and bug fix update
2023-10-24 18:36:24
osv
osv
13
openjdk-11 - security update
2023-10-29 00:00:00
Moderate: java-11-openjdk security and bug fix update
2023-10-24 18:36:24
Moderate: java-11-openjdk security and bug fix update
2023-10-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-11-30 20:33:47
oraclelinux
oraclelinux
9
java-11-openjdk security and bug fix update
2023-10-26 00:00:00
java-11-openjdk security and bug fix update
2023-10-27 00:00:00
java-21-openjdk security and bug fix update
2023-11-18 00:00:00
openvas
openvas
15
SUSE: Security Advisory (SUSE-SU-2023:4152-1)
2023-10-23 00:00:00
openSUSE: Security Advisory for java (SUSE-SU-2023:4198-1)
2024-03-04 00:00:00
CentOS: Security Advisory for java-11-openjdk (CESA-2023:5736)
2024-03-05 00:00:00
alpinelinux
alpinelinux
CVE-2023-22081
2023-10-17 22:15:13
redhat
redhat
29
(RHSA-2023:5742) Moderate: java-11-openjdk security and bug fix update
2023-10-18 14:37:59
(RHSA-2023:5741) Moderate: java-11-openjdk security and bug fix update
2023-10-18 15:02:46
(RHSA-2023:5739) Moderate: java-11-openjdk security and bug fix update
2023-10-18 14:50:31
ibm
ibm
36
Security Bulletin: TSSC/IMC is vulnerable to aritrary code excecution due to Java (CVE-2023-22081)
2024-06-20 23:41:18
Security Bulletin: IBM Event Streams is affected by a partial denial of service in Java (CVE-2023-22081).
2024-02-16 08:30:04
Security Bulletin: IBM Sterling Connect:Direct for UNIX is vulnerable to an unspecified vulnerability and denial of service due to IBM Runtime Environment Java Technology Edition
2024-02-23 20:45:29
cvelist
cvelist
CVE-2023-22081
2023-10-17 21:02:56
debiancve
debiancve
CVE-2023-22081
2023-10-17 22:15:13
debian
debian
[SECURITY] [DLA 3636-1] openjdk-11 security update
2023-10-29 08:16:42
[SECURITY] [DSA 5548-1] openjdk-17 security update
2023-11-05 19:56:26
[SECURITY] [DSA 5537-1] openjdk-11 security update
2023-10-27 16:12:53
almalinux
almalinux
6
Moderate: java-11-openjdk security and bug fix update
2023-10-18 00:00:00
Moderate: java-11-openjdk security and bug fix update
2023-10-18 00:00:00
Moderate: java-17-openjdk security and bug fix update
2023-10-18 00:00:00
ubuntucve
ubuntucve
CVE-2023-22081
2023-10-17 00:00:00
nvd
nvd
CVE-2023-22081
2023-10-17 22:15:13
redhatcve
redhatcve
CVE-2023-22081
2023-10-18 14:00:48
prion
prion
Buffer overflow
2023-10-17 22:15:00
cve
cve
CVE-2023-22081
2023-10-17 22:15:13
amazon
amazon
4
Medium: java-11-amazon-corretto
2023-10-18 02:27:00
Medium: java-17-amazon-corretto
2023-10-18 02:27:00
Medium: java-1.8.0-openjdk
2024-01-03 22:37:00
centos
centos
java security update
2024-01-12 19:19:02
java security update
2024-01-12 19:19:48
f5
f5
K000138103 : Oracle Java SE vulnerabilities CVE-2023-22067 and CVE-2023-22081
2024-01-02 00:00:00
ubuntu
ubuntu
OpenJDK vulnerabilities
2023-11-29 00:00:00
mageia
mageia
Updated java openjdk packages fix security vulnerabilities
2023-11-28 03:11:29
kaspersky
kaspersky
KLA61443 Multiple vulnerabilities in Oracle Java SE and GraalVM
2023-10-17 00:00:00
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.8%
JSON
Related for ELSA-2023-5736
nessus
68
rocky
1
osv
13
veracode
1
oraclelinux
9
openvas
15
alpinelinux
1
redhat
29
ibm
36
cvelist
1
debiancve
1
debian
3
almalinux
6
ubuntucve
1
nvd
1
redhatcve
1
prion
1
cve
1
amazon
4
centos
2
f5
1
ubuntu
1
mageia
1
kaspersky
1