java-11-openjdk-11.0.21.0.9-1.el7

Release date:

Wednesday, October 18, 2023 - 18:41

Subject:

Affected Channels:

Asianux Server 7 for x86_64

Severity:

Moderate

Description:

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.

Security Fix(es):

* OpenJDK: certificate path validation issue during client authentication (8309966) (CVE-2023-22081)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* Additional validity checks in the handling of Zip64 files, JDK-8302483, were introduced in the 11.0.20 release of OpenJDK, causing the use of some valid zip files to now fail with an error. This release, 11.0.20.1, allows for zero-length headers and additional padding produced by some Zip64 creation tools. With both releases, the checks can be disabled using -Djdk.util.zip.disableZip64ExtraFieldValidation=true. (RHBZ#2236229)
* A maximum signature file size property, jdk.jar.maxSignatureFileSize, was introduced in the 11.0.20 release of OpenJDK by JDK-8300596, with a default of 8 MB. This default proved to be too small for some JAR files. This release, 11.0.20.1, increases it to 16 MB. (RHEL-13217)
* The serviceability agent would print an exception when encountering null addresses while producing thread dumps. These null values are now handled appropriately. (JDK-8243210)
* The /usr/bin/jfr alternative is now owned by the java-11-openjdk package (RHEL-11320)
* The jcmd tool is now provided by the java-11-openjdk-headless package, rather than java-1.8.0-openjdk-devel, to make it more accessible (RHEL-13227)

CVE-2023-22081
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u381, 8u381-perf, 11.0.20, 17.0.8, 20.0.2; Oracle GraalVM for JDK: 17.0.8 and 20.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Java SE, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM for JDK. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

Solution:

Update packages.

CVEs:

CVE-2023-22081
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u381, 8u381-perf, 11.0.20, 17.0.8, 20.0.2; Oracle GraalVM for JDK: 17.0.8 and 20.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Java SE, Oracle GraalVM for JDK. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM for JDK. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

Additional Info:

N/A

Download:

SRPMS

java-11-openjdk-11.0.21.0.9-1.el7.src.rpm
MD5: b70e9ad50f7154274307402fcc8d2a7e
SHA-256: ecb0244519f0633e3d2d27427296734c61d2a1c3f5f11ff77adcd7286dc7ddb3
Size: 68.42 MB

Asianux Server 7 for x86_64

java-11-openjdk-11.0.21.0.9-1.el7.i686.rpm
MD5: 34427212afc66c84a9fdc2eb6bd6adcd
SHA-256: 654f793959286ba78de8a6e3262d56f21cc7b48b94ef6a618b898afe0ac18123
Size: 237.32 kB
java-11-openjdk-11.0.21.0.9-1.el7.x86_64.rpm
MD5: e0e5e57e7131e01484a227ea98fc644f
SHA-256: a13760ce404330dbd19ef5310ef76b4bfc7582d44af9776efab3d6a7579116ce
Size: 241.20 kB
java-11-openjdk-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: 755cf585e9c65e5cf57a7e55467f0916
SHA-256: ed5a97f4c39998e68a6956b4dffbdf7df834b3e97cf1813132343b21539c98c6
Size: 240.24 kB
java-11-openjdk-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 4a9cda3171e838671c14ff9baa8c857f
SHA-256: b004739ed6bcda4e29ba237069ced7a524bded6a55fb0f68ff9d1d53d3d774ce
Size: 246.43 kB
java-11-openjdk-demo-11.0.21.0.9-1.el7.i686.rpm
MD5: 67ab8f4a80fb4f2e9076b795a2e0f772
SHA-256: 0d98232210c711329600946267a6f759692e4c5332f5fe228e05fc943cc6daa0
Size: 4.37 MB
java-11-openjdk-demo-11.0.21.0.9-1.el7.x86_64.rpm
MD5: ac5db19195c709ddba5beb8d1a9cbf56
SHA-256: 47be487c436bd2b86dfe40b08fe481a932d1e1f5844a339b9b591e97adb39889
Size: 4.37 MB
java-11-openjdk-demo-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: 7ea5c9b6bb372a0879eeb4f806eab063
SHA-256: a777b49e26f4fe4adcdd4ede595a64f6b73c7a1a33fbd24c63ebb834eca0e469
Size: 4.37 MB
java-11-openjdk-demo-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: db65ae5b97765f69cfc34d267331187f
SHA-256: a4c74c1d0a9d009031370a36a0b42ca4eb2b7b43ca9364b7de5a4ebbd0eeda83
Size: 4.37 MB
java-11-openjdk-devel-11.0.21.0.9-1.el7.i686.rpm
MD5: 3c24f824a51a7589f56024a0fafdecb5
SHA-256: d2c5f863a220268f9550bad4c581c0bbb8f54e0a68c09d54b0d9f31aeec784c5
Size: 3.35 MB
java-11-openjdk-devel-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 2ec64f824ff932bcc128950f7d40b006
SHA-256: 115cae24a16453f2ccfb10677bd71a2d9f980982c348890af9756885dddfe261
Size: 3.38 MB
java-11-openjdk-devel-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: bd04ddb08521a76ac0e95f71abeb0f22
SHA-256: 5319b9a257255425dc4096edd5b5b39b8042deb1aa24a7843cedd867bddef3d2
Size: 3.36 MB
java-11-openjdk-devel-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 2082bd1574b7a3fa15b07aa101633de7
SHA-256: 1908b473a583c738ba3e3ba4760775e07d72639bb0c5fc6e153593a3ae65a9b0
Size: 3.38 MB
java-11-openjdk-headless-11.0.21.0.9-1.el7.i686.rpm
MD5: 595c9f0e3ae3492fc5f0c4132c0e19e1
SHA-256: 290b7f80c975f044a266e2890ce5c61036ac4574b89f5fb59e073c457edb6e34
Size: 35.13 MB
java-11-openjdk-headless-11.0.21.0.9-1.el7.x86_64.rpm
MD5: f1d4ddf085371aa665ff8f1c467b4abf
SHA-256: 27de2b3d4f247b3a2690527f25fb3f24065e0b275005343f2002113e66feeaf5
Size: 39.03 MB
java-11-openjdk-headless-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: 40431300c2d498146cf8dfc6e2f1b48d
SHA-256: 6baa10ad2620cb169b4c8d8919fa069db6bb8e152624a3df6781566b2f699ee5
Size: 37.11 MB
java-11-openjdk-headless-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 7140c62b05da4c737da06d315ecb3602
SHA-256: f1a79983dafe25edcd5118c024748823c13195c06fc5dc12ead50553250604e8
Size: 41.57 MB
java-11-openjdk-javadoc-11.0.21.0.9-1.el7.i686.rpm
MD5: 6d856c030f131dee60867aa96e0f3b03
SHA-256: 1d66db409362d39d657c7d058333024ea888760ffa2b276aead6a78afcc133d2
Size: 16.10 MB
java-11-openjdk-javadoc-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 4d078b8c0ddeab95262a31cdde2be64f
SHA-256: 25b411e0dcda34c32658a1f2e45e3f0faf4dcf698565c5d8de1b8c0e7241e0c7
Size: 16.10 MB
java-11-openjdk-javadoc-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: d914a41d202d143101a88b72ba1e5ed2
SHA-256: d4b02cbaa4c776ba3c420f40df200c5dca77f0ca05c41f157be755520327e833
Size: 16.10 MB
java-11-openjdk-javadoc-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 1365f3b14ccf77d62874c601ac266e24
SHA-256: 5af75ade8ecefd58fca8a7b57b3f0b31b78c1911353fd8feb29abae6884f3fca
Size: 16.11 MB
java-11-openjdk-javadoc-zip-11.0.21.0.9-1.el7.i686.rpm
MD5: 7c04cd66578ab04bd9f3edf1391a1eb4
SHA-256: 7f4ae9c7bf666330feafb9611e34c4504f90fbb642d9c5e8ce92bddf6f975300
Size: 42.08 MB
java-11-openjdk-javadoc-zip-11.0.21.0.9-1.el7.x86_64.rpm
MD5: bd3197e3605697830a73377e35153e17
SHA-256: a4518818e116124a418ab8b629e6286c861347cf8351d254756a066bf4a9ab80
Size: 42.05 MB
java-11-openjdk-javadoc-zip-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: 22ba589d2af60e6c5de05e58b639fa06
SHA-256: 8ce49f3cb0f8f0f57d37584042a92313c01a65ed2c7ed3137e2d1c3e95490f71
Size: 42.08 MB
java-11-openjdk-javadoc-zip-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 3dae64d73be7950758e8c78b04225eb5
SHA-256: 89e0dc15bb4aa7550e5454ec72d4c25193ef7a02d172a10549f36b893b82f9f5
Size: 42.05 MB
java-11-openjdk-jmods-11.0.21.0.9-1.el7.i686.rpm
MD5: 5b726afa677e7f431d087af761ee785c
SHA-256: 7b4aff670a1bb980b178f876a1e5cb70078f4d3678fb5c97e992dd5e217b9a06
Size: 258.51 MB
java-11-openjdk-jmods-11.0.21.0.9-1.el7.x86_64.rpm
MD5: e4f60d31debbe97656e51b7e40693f69
SHA-256: 6d8577f69dc08626db43a416df1dfa1b50dafcba644ebc28ab32608bc46443b1
Size: 306.28 MB
java-11-openjdk-jmods-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: 695ec5d28a2be3567e31dbdebf6c57bf
SHA-256: 01123adc7dfba9d37ff2af958afd0989b3b908c23856568ebc658fc69298c56e
Size: 147.45 MB
java-11-openjdk-jmods-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 579ea7c1c7c22cdefdde15b2d55c7fff
SHA-256: e798a7dbd816899e377d062790f9e052005c12aa69020c722dc33b57f172a321
Size: 174.41 MB
java-11-openjdk-src-11.0.21.0.9-1.el7.i686.rpm
MD5: 3d2856f1db59655443507096420da8ef
SHA-256: 9543e4c6d1ad241266ff010196e44fb836d600e9bcaedb385b488b4e8435bfcd
Size: 45.74 MB
java-11-openjdk-src-11.0.21.0.9-1.el7.x86_64.rpm
MD5: 672a0b1c8a1e3a04abd2179d8dc13ba2
SHA-256: e55e3876911de9633e76362a8017360bb64b74b08b8b876594b7efa6fe3aa69b
Size: 50.48 MB
java-11-openjdk-src-debug-11.0.21.0.9-1.el7.i686.rpm
MD5: f963cda1594ff0fabf5aa13393f7ddcb
SHA-256: 4280dd85f18fcffde02549b5cd1d1c34bc63586fe098a5638296a1976267bd50
Size: 45.74 MB
java-11-openjdk-src-debug-11.0.21.0.9-1.el7.x86_64.rpm
MD5: b18000fded38c1b45be84e47a522ab52
SHA-256: 1a368935bf92395b6c78ddb2fd88bf6883a2f3e0d95a3d4ef9078bcce09f117e
Size: 50.48 MB

Main menu

You are here

java-11-openjdk-11.0.21.0.9-1.el7