SUSE CVE-2023-5676

🗓️ 17 Nov 2023 02:02:07Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

CVE-2023-5676: OpenJ9 before 0.41.0 may hang or segfault on shutdown during init.

Reporter	Title	Published	Views	Family All 152
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Functional Tester	3 Jan 202407:14	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect WebSphere Service Registry and Repository due to October 2023 CPU	7 Dec 202313:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM MQ affect IBM Robotic Process Automation.	10 Jun 202422:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java, OpenSSL, and libcurl may affect IBM Storage Protect for Virtual Environments: Data Protection for Microsoft Hyper-V	4 Apr 202418:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM® Semeru Runtime	29 Nov 202313:16	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Connect:Direct Web Service is vulnerable to multiple vulnerabilities due to IBM Java	19 Feb 202408:10	–	ibm
IBM Security Bulletins	Security Bulletin: There are multiple vulnerabilities in IBM DB2 bundled with IBM Application Performance Management products.	3 May 202413:22	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ is affected by multiple vulnerabilities in the IBM Runtime Environment, Java Technology Edition (CVE-2023-22081 and CVE-2023-5676)	15 Dec 202300:00	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Db2 may affect IBM Storage Protect Server (CVE-2023-22081, CVE-2023-5676).	15 Jul 202415:02	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java may affect IBM Storage Protect for Space Management	21 Jun 202407:32	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
OpenSUSE Tumbleweed	–	any	java-11-openj9	11.0.21.0-1.1	java-11-openj9-11.0.21.0-1.1.noarch.rpm
OpenSUSE Leap	15.6	any	java-11-openj9	11.0.26.0-bp156.4.3.1	java-11-openj9-11.0.26.0-bp156.4.3.1.noarch.rpm
SUSE Linux Enterprise Server	15.6	any	java-11-openj9	11.0.26.0-bp156.4.3.1	java-11-openj9-11.0.26.0-bp156.4.3.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	java-11-openj9-demo	11.0.21.0-1.1	java-11-openj9-demo-11.0.21.0-1.1.noarch.rpm
OpenSUSE Leap	15.6	any	java-11-openj9-demo	11.0.26.0-bp156.4.3.1	java-11-openj9-demo-11.0.26.0-bp156.4.3.1.noarch.rpm
SUSE Linux Enterprise Server	15.6	any	java-11-openj9-demo	11.0.26.0-bp156.4.3.1	java-11-openj9-demo-11.0.26.0-bp156.4.3.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	java-11-openj9-devel	11.0.21.0-1.1	java-11-openj9-devel-11.0.21.0-1.1.noarch.rpm
OpenSUSE Leap	15.6	any	java-11-openj9-devel	11.0.26.0-bp156.4.3.1	java-11-openj9-devel-11.0.26.0-bp156.4.3.1.noarch.rpm
SUSE Linux Enterprise Server	15.6	any	java-11-openj9-devel	11.0.26.0-bp156.4.3.1	java-11-openj9-devel-11.0.26.0-bp156.4.3.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	java-11-openj9-headless	11.0.21.0-1.1	java-11-openj9-headless-11.0.21.0-1.1.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2023-5676
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1217214
lists	www.lists.suse.com/pipermail/sle-security-updates/2023-November/017234.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2023-November/017260.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2023-November/017258.html
lists	www.lists.suse.com/pipermail/sle-updates/2024-February/034224.html
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/GS63GCBRVH7N4JEIZNQAPVFNNVB2OGSU/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/XA5CCGSPUXUTQHDG25O5DM4G37BLRUMN/

06 Jun 2026 05:01Current

8High risk

Vulners AI Score8

CVSS 3.16.5

EPSS0.00043

openj9 older versions shutdown signal initialization spinlock segmentation fault unix