Lucene search

K
suseSuseOPENSUSE-SU-2021:3671-1
HistoryNov 16, 2021 - 12:00 a.m.

Security update for java-11-openjdk (important)

2021-11-1600:00:00
lists.opensuse.org
61
java-11-openjdk
security update
vulnerabilities
cipher suites
httpsserver
richer text editors
rtf kit
hashing support
keystore integrity
delegation
tls client handshaking
bmp support
stream handling
ssl
certificate requests
dtls client handshake
opensuse leap 15.3
patch installation

EPSS

0.003

Percentile

70.4%

An update that fixes 10 vulnerabilities is now available.

Description:

This update for java-11-openjdk fixes the following issues:

Update to 11.0.13+8 (October 2021 CPU)

  • CVE-2021-35550, bsc#1191901: Update the default enabled cipher suites
    preference
  • CVE-2021-35565, bsc#1191909: com.sun.net.HttpsServer spins on TLS
    session close
  • CVE-2021-35556, bsc#1191910: Richer Text Editors
  • CVE-2021-35559, bsc#1191911: Enhanced style for RTF kit
  • CVE-2021-35561, bsc#1191912: Better hashing support
  • CVE-2021-35564, bsc#1191913: Improve Keystore integrity
  • CVE-2021-35567, bsc#1191903: More Constrained Delegation
  • CVE-2021-35578, bsc#1191904: Improve TLS client handshaking
  • CVE-2021-35586, bsc#1191914: Better BMP support
  • CVE-2021-35603, bsc#1191906: Better session identification
  • Improve Stream handling for SSL
  • Improve requests of certificates
  • Correct certificate requests
  • Enhance DTLS client handshake

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

  • openSUSE Leap 15.3:

    zypper in -t patch openSUSE-SLE-15.3-2021-3671=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap15.3aarch64< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.aarch64.rpm
openSUSE Leap15.3ppc64le< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.ppc64le.rpm
openSUSE Leap15.3s390x< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.s390x.rpm
openSUSE Leap15.3x86_64< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.x86_64.rpm
openSUSE Leap15.3noarch< - openSUSE Leap 15.3 (noarch):- openSUSE Leap 15.3 (noarch):.noarch.rpm