VDB
SUSE-SU-2023%3A2109-1
SUSE-SU-2023%3A2109-1
PUBLISHED
CVSS 7.400000095367432 HIGH
This update for java-11-openjdk fixes the following issues: Upgrade to upsteam tag jdk-11.0.19+7 (April 2023 CPU): - CVE-2023-21930: Fixed AES support (bsc#1210628). - CVE-2023-21937: Fixed String platform support (bsc#1210631). - CVE-2023-21938: Fixed runtime support (bsc#1210632). - CVE-2023-21939: Fixed Swing platform support (bsc#1210634). - CVE-2023-21954: Fixed object reclamation process (bsc#1210635). - CVE-2023-21967: Fixed TLS session negotiation (bsc#1210636). - CVE-2023-21968: Fixed path handling (bsc#1210637).
Risk Scores
CVSS 3.1
7.400000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| java |
Timeline
- May 5, 2023 CVE Published
References
- https://www.suse.com/support/security/rating/ url
- https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_2109-1.json advisory
- https://www.suse.com/support/update/announcement/2023/suse-su-20232109-1/ advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014739.html advisory
- https://bugzilla.suse.com/1210628 advisory
- https://bugzilla.suse.com/1210631 advisory
- https://bugzilla.suse.com/1210632 advisory
- https://bugzilla.suse.com/1210634 advisory
- https://bugzilla.suse.com/1210635 advisory
- https://bugzilla.suse.com/1210636 advisory
- https://bugzilla.suse.com/1210637 advisory
- https://www.suse.com/security/cve/CVE-2023-21930/ advisory
- https://www.suse.com/security/cve/CVE-2023-21937/ advisory
- https://www.suse.com/security/cve/CVE-2023-21938/ advisory
- https://www.suse.com/security/cve/CVE-2023-21939/ advisory
- https://www.suse.com/security/cve/CVE-2023-21954/ advisory
- https://www.suse.com/security/cve/CVE-2023-21967/ advisory
- https://www.suse.com/security/cve/CVE-2023-21968/ advisory