Lucene search
Basic search
Lucene search
Search by product
Subscribe
K
Start 30-day trial
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
SIGN IN
OracleLinux
ELSA-2023-6738
History
Nov 11, 2023 - 12:00 a.m.
java-21-openjdk security and bug fix update
Vulners
Oraclelinux
java-21-openjdk security and bug fix update
2023-11-11
00:00:00
linux.oracle.com
11
oracle vendor
portable binaries
rhel 7
release notes
specfile
freetype
security policy
root directory
alternative binaries
jdk-8005165
timezone data
package changes
patches
fips
upstream url
jdk-8306983
ecc
icedtea_version
cldr
npe fix
croatia euro update
jvm var
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.7%
JSON
[1:21.0.1.0.12-2.0.1]
Add Oracle vendor bug URL
[1:21.0.1.0.12-2]
Switch to using portable binaries built on RHEL 7
Sync the copy of the portable specfile with the RHEL 7 version
Related: RHEL-12997
[1:21.0.1.0.12-1]
Update to jdk-21.0.1.0+12 (GA)
Update release notes to 21.0.1.0+12
Sync the copy of the portable specfile with the latest update
Update openjdk_news script to specify subdirectory last
Add missing discover_trees script required by openjdk_news
Synchronise bundled versions with 21u sources (FreeType, LCMS, HarfBuzz, libpng)
Sync generate_tarball.sh with 11u & 17u version
Update bug URL for RHEL to point to the Red Hat customer portal
Fix upstream release URL for OpenJDK source
Following JDK-8005165, class data sharing can be enabled on all JIT architectures
Use tapsets from the misc tarball
Introduce ‘prelease’ for the portable release versioning, to handle EA builds
Make sure root installation directory is created first
Use in-place substitution for all but the first of the tapset changes
Synchronise runtime and buildtime tzdata requirements
Remove ghosts for binaries not in java-21-openjdk (pack200, rmid, unpack200)
Add missing jfr, jpackage and jwebserver alternative ghosts
Move jcmd to the headless package
Revert alt-java binary location to being within the JDK tree
Resolves: RHEL-12997
Resolves: RHEL-14954
Resolves: RHEL-14962
Resolves: RHEL-14958
Related: RHEL-14946
Resolves: RHEL-14959
Resolves: RHEL-14948
[1:21.0.1.0.12-1]
Exclude classes_nocoops.jsa on i686 and arm32
Related: RHEL-14946
[1:21.0.1.0.12-1]
Fix packaging of CDS archives
Resolves: RHEL-14946
[1:21.0.0.0.35-2]
Update documentation (
README.md
)
Replace alt-java patch with a binary separate from the JDK
Drop stale patches that are of little use any more:
nss.cfg has been disabled since early PKCS11 work and long superseded by FIPS work
No accessibility subpackage to warrant RH1648242 & RH1648644 patches any more
No use of system libjpeg turbo to warrant RH649512 patch any more
Replace RH1684077 pcsc-lite-libs patch with better JDK-8009550 fix being upstreamed
Adapt alt-java test to new binary where there is always a set_speculation function
Related: RHEL-12997
[1:21.0.0.0.35-1]
Update to jdk-21.0.0+35
Update system crypto policy & FIPS patch from new fips-21u tree
Update generate_tarball.sh to sync with upstream vanilla script inc. no more ECC removal
Drop fakefeaturever now it is no longer needed
Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
Use upstream release URL for OpenJDK source
Re-enable tzdata tests now we are on the latest JDK and things are back in sync
Install jaxp.properties introduced by JDK-8303530
Install
lible.so
introduced by JDK-8306983
Related: RHEL-12997
[1:21.0.0.0.35-1]
Replace smoke test files used in the staticlibs test, as fdlibm was removed by JDK-8303798
Related: RHEL-12997
[1:20.0.0.0.36-1]
Update to jdk-20.0.2+9
Update release notes to 20.0.2+9
Update system crypto policy & FIPS patch from new fips-20u tree
Update generate_tarball.sh ICEDTEA_VERSION
Update CLDR reference data following update to 42 (Rocky Mountain-Normalzeit => Rocky-Mountain-Normalzeit)
Related: RHEL-12997
[1:20.0.0.0.36-1]
Dropped JDK-8295447, JDK-8296239 & JDK-8299439 patches now upstream
Adapted rh1750419-redhat_alt_java.patch
Related: RHEL-12997
[1:19.0.1.0.10-1]
Update to jdk-19.0.2 release
Update release notes to 19.0.2
Rebase FIPS patches from fips-19u branch
Remove references to sample directory removed by JDK-8284999
Add local patch JDK-8295447 (javac NPE) which was accepted into 19u upstream but not in the GA tag
Add local patches for JDK-8296239 & JDK-8299439 (Croatia Euro update) which are present in 8u, 11u & 17u releases
Related: RHEL-12997
[1:18.0.2.0.9-1]
Update to jdk-18.0.2 release
Support JVM variant zero following JDK-8273494 no longer installing Zero’s
libjvm.so
in the server directory
Rebase FIPS patches from fips-18u branch
Rebase RH1648249 nss.cfg patch so it applies after the FIPS patch
Drop now unused fresh_libjvm, build_hotspot_first, bootjdk and buildjdkver variables, as we don’t build a JDK here
Drop tzdata patches added for 17.0.7 which will eventually appear in the upstream tarball when we reach OpenJDK 21
Disable tzdata tests until we are on the latest JDK and things are back in sync
Use empty nss.fips.cfg until it is again available via the FIPS patch
Related: RHEL-12997
[1:18.0.2.0.9-1]
Update to ea version of jdk18
Add new slave jwebserver and corresponding manpage
Adjust rh1684077-openjdk_should_depend_on_pcsc-lite-libs_instead_of_pcsc-lite-devel.patch
Related: RHEL-12997
[1:18.0.2.0.9-1]
Add javaver- and origin-specific javadoc and javadoczip alternatives.
Related: RHEL-12997
[1:17.0.7.0.7-4]
Add files missed by centpkg import.
Related: rhbz#2192748
[1:17.0.7.0.7-3]
Create java-21-openjdk package based on java-17-openjdk
Related: rhbz#2192748
Affected Package
OS
Version
Architecture
Package
Version
Filename
oracle linux
9
src
java-21-openjdk
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-21.0.1.0.12-2.0.1.el9.src.rpm
oracle linux
9
src
java-21-openjdk
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-21.0.1.0.12-2.0.1.el9.src.rpm
oracle linux
9
aarch64
java-21-openjdk
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-21.0.1.0.12-2.0.1.el9.aarch64.rpm
oracle linux
9
aarch64
java-21-openjdk-demo
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-demo-21.0.1.0.12-2.0.1.el9.aarch64.rpm
oracle linux
9
aarch64
java-21-openjdk-demo-fastdebug
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-demo-fastdebug-21.0.1.0.12-2.0.1.el9.aarch64.rpm
oracle linux
9
aarch64
java-21-openjdk-demo-slowdebug
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-demo-slowdebug-21.0.1.0.12-2.0.1.el9.aarch64.rpm
oracle linux
9
aarch64
java-21-openjdk-devel
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-devel-21.0.1.0.12-2.0.1.el9.aarch64.rpm
oracle linux
9
aarch64
java-21-openjdk-devel-fastdebug
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-devel-fastdebug-21.0.1.0.12-2.0.1.el9.aarch64.rpm
oracle linux
9
aarch64
java-21-openjdk-devel-slowdebug
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-devel-slowdebug-21.0.1.0.12-2.0.1.el9.aarch64.rpm
oracle linux
9
aarch64
java-21-openjdk-fastdebug
< 21.0.1.0.12-2.0.1.el9
java-21-openjdk-fastdebug-21.0.1.0.12-2.0.1.el9.aarch64.rpm
Rows per page:
10
1-10 of 50
1
Related
almalinux 6
redhat 25
nessus 64
debian 3
oraclelinux 8
ubuntu 2
openvas 20
amazon 4
osv 13
ibm 28
kaspersky 1
debiancve 2
veracode 2
f5 2
nvd 2
cvelist 2
prion 2
rocky 1
alpinelinux 2
ubuntucve 2
cve 2
redhatcve 2
centos 2
mageia 2
almalinux
almalinux
6
Moderate: java-21-openjdk security and bug fix update
2023-11-14 00:00:00
Moderate: java-21-openjdk security and bug fix update
2023-11-07 00:00:00
Moderate: java-17-openjdk security and bug fix update
2023-10-18 00:00:00
redhat
redhat
25
(RHSA-2023:5753) Moderate: java-17-openjdk security and bug fix update
2023-10-18 15:04:36
(RHSA-2023:5751) Moderate: java-17-openjdk security and bug fix update
2023-10-18 15:07:56
(RHSA-2023:5750) Moderate: java-17-openjdk security and bug fix update
2023-10-18 15:07:42
nessus
nessus
64
Amazon Linux 2 : java-17-amazon-corretto (ALAS-2023-2314)
2023-10-20 00:00:00
AlmaLinux 9 : java-17-openjdk (ALSA-2023:5753)
2023-10-21 00:00:00
Amazon Linux 2023 : java-21-amazon-corretto, java-21-amazon-corretto-devel, java-21-amazon-corretto-headless (ALAS2023-2023-399)
2023-10-24 00:00:00
debian
debian
[SECURITY] [DSA 5548-1] openjdk-17 security update
2023-11-05 19:56:26
[SECURITY] [DLA 3636-1] openjdk-11 security update
2023-10-29 08:16:42
[SECURITY] [DSA 5537-1] openjdk-11 security update
2023-10-27 16:12:53
oraclelinux
oraclelinux
8
java-21-openjdk security and bug fix update
2023-11-18 00:00:00
java-17-openjdk security and bug fix update
2023-10-31 00:00:00
java-17-openjdk security and bug fix update
2023-10-30 00:00:00
ubuntu
ubuntu
OpenJDK vulnerabilities
2023-11-29 00:00:00
OpenJDK 8 vulnerabilities
2023-11-29 00:00:00
openvas
openvas
20
Ubuntu: Security Advisory (USN-6527-1)
2023-11-30 00:00:00
openSUSE: Security Advisory for java (SUSE-SU-2023:4289-1)
2024-03-04 00:00:00
Debian: Security Advisory (DSA-5548-1)
2023-11-06 00:00:00
amazon
amazon
4
Medium: java-17-amazon-corretto
2023-10-18 02:27:00
Medium: java-11-amazon-corretto
2023-10-18 02:27:00
Medium: java-1.8.0-openjdk
2024-01-03 22:37:00
osv
osv
13
openjdk-17, openjdk-21, openjdk-lts vulnerabilities
2023-11-29 21:56:58
openjdk-17 - security update
2023-11-05 00:00:00
Moderate: java-17-openjdk security and bug fix update
2023-10-18 00:00:00
ibm
ibm
28
Security Bulletin: Vulnerability with MariaDB and OpenJDK affect IBM Cloud Object Storage Systems (Dec2023v1)
2023-12-14 22:00:04
Security Bulletin: TSSC/IMC is vulnerable to aritrary code excecution due to Java (CVE-2023-22081)
2024-06-20 23:41:18
Security Bulletin: IBM Event Streams is affected by a partial denial of service in Java (CVE-2023-22081).
2024-02-16 08:30:04
kaspersky
kaspersky
KLA61443 Multiple vulnerabilities in Oracle Java SE and GraalVM
2023-10-17 00:00:00
debiancve
debiancve
CVE-2023-22025
2023-10-17 22:15:11
CVE-2023-22081
2023-10-17 22:15:13
veracode
veracode
Improper Authorization
2023-11-30 20:29:56
Denial Of Service (DoS)
2023-11-30 20:33:47
f5
f5
K000137612 : Oracle Java SE vulnerability CVE-2023-22025
2023-11-17 00:00:00
K000138103 : Oracle Java SE vulnerabilities CVE-2023-22067 and CVE-2023-22081
2024-01-02 00:00:00
nvd
nvd
CVE-2023-22025
2023-10-17 22:15:11
CVE-2023-22081
2023-10-17 22:15:13
cvelist
cvelist
CVE-2023-22025
2023-10-17 21:02:47
CVE-2023-22081
2023-10-17 21:02:56
prion
prion
Buffer overflow
2023-10-17 22:15:00
Buffer overflow
2023-10-17 22:15:00
rocky
rocky
java-11-openjdk security and bug fix update
2023-10-24 18:36:24
alpinelinux
alpinelinux
CVE-2023-22081
2023-10-17 22:15:13
CVE-2023-22025
2023-10-17 22:15:11
ubuntucve
ubuntucve
CVE-2023-22081
2023-10-17 00:00:00
CVE-2023-22025
2023-10-17 00:00:00
cve
cve
CVE-2023-22025
2023-10-17 22:15:11
CVE-2023-22081
2023-10-17 22:15:13
redhatcve
redhatcve
CVE-2023-22025
2023-10-16 10:48:40
CVE-2023-22081
2023-10-18 14:00:48
centos
centos
java security update
2024-01-12 19:19:02
java security update
2024-01-12 19:19:48
mageia
mageia
Updated java-17-openjdk packages fix security vulnerabilities
2024-03-14 02:14:37
Updated java openjdk packages fix security vulnerabilities
2023-11-28 03:11:29
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.7%
JSON
Related for ELSA-2023-6738
almalinux
6
redhat
25
nessus
64
debian
3
oraclelinux
8
ubuntu
2
openvas
20
amazon
4
osv
13
ibm
28
kaspersky
1
debiancve
2
veracode
2
f5
2
nvd
2
cvelist
2
prion
2
rocky
1
alpinelinux
2
ubuntucve
2
cve
2
redhatcve
2
centos
2
mageia
2