1. Home
  2. Security Advisories
  3. OpenSUSE
  4. openSUSE-SU-2019:1916-1

[openSUSE-SU-2019:1916-1] Security update for java-11-openjdk

Severity Important
Affected Packages 30
CVEs 9
Info Packages References Vulnerabilities

Security update for java-11-openjdk

This update for java-11-openjdk to version jdk-11.0.4+11 fixes the following issues:

Security issues fixed:

  • CVE-2019-2745: Improved ECC Implementation (bsc#1141784).
  • CVE-2019-2762: Exceptional throw cases (bsc#1141782).
  • CVE-2019-2766: Improve file protocol handling (bsc#1141789).
  • CVE-2019-2769: Better copies of CopiesList (bsc#1141783).
  • CVE-2019-2786: More limited privilege usage (bsc#1141787).
  • CVE-2019-7317: Improve PNG support options (bsc#1141780).
  • CVE-2019-2818: Better Poly1305 support (bsc#1141788).
  • CVE-2019-2816: Normalize normalization (bsc#1141785).
  • CVE-2019-2821: Improve TLS negotiation (bsc#1141781).
  • Certificate validation improvements

Non-security issues fixed:

  • Do not fail installation when the manpages are not present (bsc#1115375)
  • Backport upstream fix for JDK-8208602: Cannot read PEM X.509 cert if there is whitespace after the header or footer (bsc#1140461)

This update was imported from the SUSE:SLE-15:Update update project.

Package Affected Version
pkg:rpm/opensuse/java-11-openjdk?arch=x86_64&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk?arch=x86_64&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk?arch=i586&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk?arch=i586&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-src?arch=x86_64&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-src?arch=x86_64&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-src?arch=i586&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-src?arch=i586&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-jmods?arch=x86_64&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-jmods?arch=x86_64&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-jmods?arch=i586&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-jmods?arch=i586&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-javadoc?arch=noarch&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-javadoc?arch=noarch&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-headless?arch=x86_64&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-headless?arch=x86_64&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-headless?arch=i586&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-headless?arch=i586&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-devel?arch=x86_64&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-devel?arch=x86_64&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-devel?arch=i586&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-devel?arch=i586&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-demo?arch=x86_64&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-demo?arch=x86_64&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-demo?arch=i586&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-demo?arch=i586&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=x86_64&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=x86_64&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=i586&distro=opensuse-leap-15.1 < 11.0.4.0-lp151.3.6.1
pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=i586&distro=opensuse-leap-15.0 < 11.0.4.0-lp151.3.6.1
ID
openSUSE-SU-2019:1916-1
Severity
important
URL
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7CWQDHDFTQ5TMYECHR6T3YTCURIWVTNU/#7CWQDHDFTQ5TMYECHR6T3YTCURIWVTNU
Published
2019-08-15T09:50:51
(5 years ago)
Modified
2019-08-15T09:50:51
(5 years ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Source # ID Name URL
Suse SUSE ratings https://www.suse.com/support/security/rating/
Suse URL of this CSAF notice https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_1916-1.json
Suse URL for openSUSE-SU-2019:1916-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7CWQDHDFTQ5TMYECHR6T3YTCURIWVTNU/#7CWQDHDFTQ5TMYECHR6T3YTCURIWVTNU
Suse E-Mail link for openSUSE-SU-2019:1916-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7CWQDHDFTQ5TMYECHR6T3YTCURIWVTNU/#7CWQDHDFTQ5TMYECHR6T3YTCURIWVTNU
Bugzilla SUSE Bug 1115375 https://bugzilla.suse.com/1115375
Bugzilla SUSE Bug 1140461 https://bugzilla.suse.com/1140461
Bugzilla SUSE Bug 1141780 https://bugzilla.suse.com/1141780
Bugzilla SUSE Bug 1141781 https://bugzilla.suse.com/1141781
Bugzilla SUSE Bug 1141782 https://bugzilla.suse.com/1141782
Bugzilla SUSE Bug 1141783 https://bugzilla.suse.com/1141783
Bugzilla SUSE Bug 1141784 https://bugzilla.suse.com/1141784
Bugzilla SUSE Bug 1141785 https://bugzilla.suse.com/1141785
Bugzilla SUSE Bug 1141787 https://bugzilla.suse.com/1141787
Bugzilla SUSE Bug 1141788 https://bugzilla.suse.com/1141788
Bugzilla SUSE Bug 1141789 https://bugzilla.suse.com/1141789
CVE SUSE CVE CVE-2019-2745 page https://www.suse.com/security/cve/CVE-2019-2745/
CVE SUSE CVE CVE-2019-2762 page https://www.suse.com/security/cve/CVE-2019-2762/
CVE SUSE CVE CVE-2019-2766 page https://www.suse.com/security/cve/CVE-2019-2766/
CVE SUSE CVE CVE-2019-2769 page https://www.suse.com/security/cve/CVE-2019-2769/
CVE SUSE CVE CVE-2019-2786 page https://www.suse.com/security/cve/CVE-2019-2786/
CVE SUSE CVE CVE-2019-2816 page https://www.suse.com/security/cve/CVE-2019-2816/
CVE SUSE CVE CVE-2019-2818 page https://www.suse.com/security/cve/CVE-2019-2818/
CVE SUSE CVE CVE-2019-2821 page https://www.suse.com/security/cve/CVE-2019-2821/
CVE SUSE CVE CVE-2019-7317 page https://www.suse.com/security/cve/CVE-2019-7317/
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/opensuse/java-11-openjdk?arch=x86_64&distro=opensuse-leap-15.1 opensuse java-11-openjdk < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk?arch=x86_64&distro=opensuse-leap-15.0 opensuse java-11-openjdk < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk?arch=i586&distro=opensuse-leap-15.1 opensuse java-11-openjdk < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 i586
Affected pkg:rpm/opensuse/java-11-openjdk?arch=i586&distro=opensuse-leap-15.0 opensuse java-11-openjdk < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 i586
Affected pkg:rpm/opensuse/java-11-openjdk-src?arch=x86_64&distro=opensuse-leap-15.1 opensuse java-11-openjdk-src < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-src?arch=x86_64&distro=opensuse-leap-15.0 opensuse java-11-openjdk-src < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-src?arch=i586&distro=opensuse-leap-15.1 opensuse java-11-openjdk-src < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 i586
Affected pkg:rpm/opensuse/java-11-openjdk-src?arch=i586&distro=opensuse-leap-15.0 opensuse java-11-openjdk-src < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 i586
Affected pkg:rpm/opensuse/java-11-openjdk-jmods?arch=x86_64&distro=opensuse-leap-15.1 opensuse java-11-openjdk-jmods < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-jmods?arch=x86_64&distro=opensuse-leap-15.0 opensuse java-11-openjdk-jmods < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-jmods?arch=i586&distro=opensuse-leap-15.1 opensuse java-11-openjdk-jmods < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 i586
Affected pkg:rpm/opensuse/java-11-openjdk-jmods?arch=i586&distro=opensuse-leap-15.0 opensuse java-11-openjdk-jmods < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 i586
Affected pkg:rpm/opensuse/java-11-openjdk-javadoc?arch=noarch&distro=opensuse-leap-15.1 opensuse java-11-openjdk-javadoc < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 noarch
Affected pkg:rpm/opensuse/java-11-openjdk-javadoc?arch=noarch&distro=opensuse-leap-15.0 opensuse java-11-openjdk-javadoc < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 noarch
Affected pkg:rpm/opensuse/java-11-openjdk-headless?arch=x86_64&distro=opensuse-leap-15.1 opensuse java-11-openjdk-headless < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-headless?arch=x86_64&distro=opensuse-leap-15.0 opensuse java-11-openjdk-headless < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-headless?arch=i586&distro=opensuse-leap-15.1 opensuse java-11-openjdk-headless < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 i586
Affected pkg:rpm/opensuse/java-11-openjdk-headless?arch=i586&distro=opensuse-leap-15.0 opensuse java-11-openjdk-headless < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 i586
Affected pkg:rpm/opensuse/java-11-openjdk-devel?arch=x86_64&distro=opensuse-leap-15.1 opensuse java-11-openjdk-devel < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-devel?arch=x86_64&distro=opensuse-leap-15.0 opensuse java-11-openjdk-devel < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-devel?arch=i586&distro=opensuse-leap-15.1 opensuse java-11-openjdk-devel < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 i586
Affected pkg:rpm/opensuse/java-11-openjdk-devel?arch=i586&distro=opensuse-leap-15.0 opensuse java-11-openjdk-devel < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 i586
Affected pkg:rpm/opensuse/java-11-openjdk-demo?arch=x86_64&distro=opensuse-leap-15.1 opensuse java-11-openjdk-demo < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-demo?arch=x86_64&distro=opensuse-leap-15.0 opensuse java-11-openjdk-demo < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-demo?arch=i586&distro=opensuse-leap-15.1 opensuse java-11-openjdk-demo < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 i586
Affected pkg:rpm/opensuse/java-11-openjdk-demo?arch=i586&distro=opensuse-leap-15.0 opensuse java-11-openjdk-demo < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 i586
Affected pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=x86_64&distro=opensuse-leap-15.1 opensuse java-11-openjdk-accessibility < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=x86_64&distro=opensuse-leap-15.0 opensuse java-11-openjdk-accessibility < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 x86_64
Affected pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=i586&distro=opensuse-leap-15.1 opensuse java-11-openjdk-accessibility < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.1 i586
Affected pkg:rpm/opensuse/java-11-openjdk-accessibility?arch=i586&distro=opensuse-leap-15.0 opensuse java-11-openjdk-accessibility < 11.0.4.0-lp151.3.6.1 opensuse-leap-15.0 i586
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date