VDB

SUSE-SU-2022%3A3152-1

SUSE-SU-2022%3A3152-1 PUBLISHED

This update for java-1_8_0-ibm fixes the following issues: Note: the issues listed below were NOT fixed with the previous update (8.0-7.11). - Update to Java 8.0 Service Refresh 7 Fix Pack 15 (bsc#1202427): - CVE-2022-34169: Fixed an integer truncation issue in the Xalan Java XSLT library that occurred when processing malicious stylesheets (bsc#1201684). - CVE-2022-21549: Fixed an issue that could lead to computing negative random exponentials (bsc#1201685). - CVE-2022-21541: Fixed a potential bypass of sandbox restrictions in the Hotspot component (bsc#1201692). - CVE-2022-21540: Fixed a potential bypass of sandbox restrictions in the Hotspot component (bsc#1201694)..

Affected Products

VendorProductVersions
SUSE:Linux Enterprise Server 12 SP2-BCLjava-1_8_0-ibm0, 0
SUSE:OpenStack Cloud Crowbar 9java-1_8_0-ibm0, 0
SUSE:Linux Enterprise Server 12 SP3-BCLjava-1_8_0-ibm0, 0
SUSE:Linux Enterprise Server 12 SP5java-1_8_0-ibm0, 0
SUSE:Linux Enterprise Software Development Kit 12 SP5java-1_8_0-ibm0, 0
SUSE:Linux Enterprise Server 12 SP4-LTSSjava-1_8_0-ibm0, 0
SUSE:Linux Enterprise Server for SAP Applications 12 SP5java-1_8_0-ibm0, 0
SUSE:Linux Enterprise Server for SAP Applications 12 SP4java-1_8_0-ibm0, 0
SUSE:OpenStack Cloud 9java-1_8_0-ibm0, 0

Timeline

  • Sep 7, 2022 CVE Published
  • Feb 4, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›