java-11-openjdk-11.0.22.0.7-1.el7
エラータID: AXSA:2024-7426:01
The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.
Security Fix(es):
* OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468) (CVE-2024-20918)
* OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547) (CVE-2024-20952)
* OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295) (CVE-2024-20919)
* OpenJDK: range check loop optimization issue (8314307) (CVE-2024-20921)
* OpenJDK: arbitrary Java code execution in Nashorn (8314284) (CVE-2024-20926)
* OpenJDK: logging of digital signature private keys (8316976) (CVE-2024-20945)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2024-20918
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM Enterprise Edition: 20.3.12, 21.3.8 and 22.3.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).
CVE-2024-20919
RESERVED
CVE-2024-20921
RESERVED
CVE-2024-20926
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21; Oracle GraalVM for JDK: 17.0.9; Oracle GraalVM Enterprise Edition: 20.3.12, 21.3.8 and 22.3.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).
CVE-2024-20945
RESERVED
CVE-2024-20952
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM Enterprise Edition: 20.3.12, 21.3.8 and 22.3.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).
Update packages.
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM Enterprise Edition: 20.3.12, 21.3.8 and 22.3.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21; Oracle GraalVM for JDK: 17.0.9; Oracle GraalVM Enterprise Edition: 20.3.12, 21.3.8 and 22.3.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM Enterprise Edition: 20.3.12, 21.3.8 and 22.3.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).
N/A
SRPMS
- java-11-openjdk-11.0.22.0.7-1.el7.src.rpm
MD5: 0b47d5a92911f566692d11fc7ff020d3
SHA-256: fd3d450935f9d8fecf15374f417e0045d61f1a8bb15e66d8c1fc00e78591299a
Size: 68.34 MB
Asianux Server 7 for x86_64
- java-11-openjdk-11.0.22.0.7-1.el7.i686.rpm
MD5: 63245b219d3db434fa9737de1d3bd886
SHA-256: 669680b6ec990ae1005d75a3d5ae62d92b2718d25ca435dc6d71c6c6f6dceebe
Size: 237.98 kB - java-11-openjdk-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 30f8dc1d6e4741f15516b945f8ebb463
SHA-256: 4e7c3cd3ebb404480019b8bbe8f3854939651823bf173fe969666118ece914fe
Size: 241.86 kB - java-11-openjdk-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: a64b958ee2d2697548277a768775f690
SHA-256: 28e46ac6935c55b5f7c0a14a93f00eb16a549021a893ee5c623455136546738d
Size: 240.90 kB - java-11-openjdk-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 7b57a2dab7a3b97db0561b2b2f263f40
SHA-256: 3b7f26f483dc6766ec2acff94b592f496f70b7f1fedaa5bdb5aa1f5117708f99
Size: 247.09 kB - java-11-openjdk-demo-11.0.22.0.7-1.el7.i686.rpm
MD5: 84125ccf14a28fdab1cbc881dcbe6888
SHA-256: 79cdcff9dec823b8278d2172c05f3598f41983c9e790be9d398f1190528e2486
Size: 4.37 MB - java-11-openjdk-demo-11.0.22.0.7-1.el7.x86_64.rpm
MD5: aee759da3178d9c48743eb38d82b743e
SHA-256: a0c2b85433e7de72338d3f16d1b4f6c446ea7b8f797652fa085f76f5c46bf972
Size: 4.37 MB - java-11-openjdk-demo-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: a09305b17793ce6f8aaa93b53f983c56
SHA-256: 93dda7980cf1d7bf2c564b8e93df0eb2aa6fac961de7747893b0a83bf89f0ab6
Size: 4.37 MB - java-11-openjdk-demo-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 3c12a1d7af226dafd5e9e977d719d80a
SHA-256: 89d03c3b9ab9178280e8bc38e2ec016e2e2191078e79dfd087ebcf0b25ea856c
Size: 4.37 MB - java-11-openjdk-devel-11.0.22.0.7-1.el7.i686.rpm
MD5: b918fa405bdb493eff288c0e8a16551a
SHA-256: 0816a7eaf8f5890e6d81857f268baa878f9a889f46363e03d0b88d3024619a40
Size: 3.36 MB - java-11-openjdk-devel-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 3ce4e613775c37f997e4f0451df22cc6
SHA-256: 5e309d593cd0403d3f88041dc4c3ab12c7a25bda2285673a82480d61a2408358
Size: 3.38 MB - java-11-openjdk-devel-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: 2b80d20331a9e08162576fea6991e018
SHA-256: 97bb844a5812c8ca72b4bc90756751515c19eb2018192f57847e592a0053d51d
Size: 3.36 MB - java-11-openjdk-devel-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: af99fb62a38476d17cc32c7e7c706854
SHA-256: 1c3dab20342cd81bda1ac593f65fef3258ba9970b1e6a8cad819f1d8c9d1ea4d
Size: 3.38 MB - java-11-openjdk-headless-11.0.22.0.7-1.el7.i686.rpm
MD5: 24553f8b0bc7ed252cb2fc3b38f4b70c
SHA-256: 8ea61e025aebc2927a1be0333273bd0a7109f715335ad8caec1d9a4494f1581e
Size: 35.14 MB - java-11-openjdk-headless-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 209fa2aa59bd826ae5d6eb476f854f8a
SHA-256: 37d3f552fb0cf740195921a9ed291b097a4a118536493e3a459d8a6f0e3e380f
Size: 39.05 MB - java-11-openjdk-headless-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: c8ebeeb0b97f0c5d2f4b44e27ff0ac8b
SHA-256: f68cf6f29d4058444a5e5117ba91c5d7f804b59fe28a051e8c13d6bebe8383f9
Size: 37.12 MB - java-11-openjdk-headless-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 891bc267f9a2ef091721bbbe180ed2be
SHA-256: d53ef292ba8c86feaaf946a23e17b14c3ad1b8646fd81dc5bc0ac7cdac6a9037
Size: 41.58 MB - java-11-openjdk-javadoc-11.0.22.0.7-1.el7.i686.rpm
MD5: 9bbb6bc6e891ca1d38e701ac1caf60a5
SHA-256: c21b74d5a76e754c2cabc35ecc5400e423e693b1276b1b121f1418b7516811bf
Size: 16.10 MB - java-11-openjdk-javadoc-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 935e653b857c07470e769ed7d282d382
SHA-256: 4816c08ac512fc6bb6a0704518617d53ba12b58fe56af5eaa2cec0b8e6e94499
Size: 16.10 MB - java-11-openjdk-javadoc-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: a941119081dbc6b2e9a42121ef8806bb
SHA-256: 25a2e0743834a2aef9d00795259dfdd373c707039d6908e6b67111fc24dc5b7b
Size: 16.10 MB - java-11-openjdk-javadoc-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 422afa48f4611d4e0e68851c182ef727
SHA-256: 4fc8e40f37f8e0fc4f536c7112cbc8280f82f76c1b1b51cdc496a84f775a31a0
Size: 16.11 MB - java-11-openjdk-javadoc-zip-11.0.22.0.7-1.el7.i686.rpm
MD5: afa577edcfc49d15182a97ce013d08c3
SHA-256: 3f809cfcb00c8435f0763603280f6081059eb344a74318c2bc69b48fd992a094
Size: 42.13 MB - java-11-openjdk-javadoc-zip-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 668736eb0a1aad57c13d69aa7a5014a6
SHA-256: 5b5035627af4dd4fbdfb9eeb9187419951fd473d474199f038e484e0ebfd6488
Size: 42.10 MB - java-11-openjdk-javadoc-zip-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: bf778fa1d5708bdafad4db756960d776
SHA-256: 7af75d5d2c04f4e1da8aaf9cba407dfadca8f826ced444003f59904cc4c5c57d
Size: 42.13 MB - java-11-openjdk-javadoc-zip-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: a7105964b4e983dc72de153875ca1ca0
SHA-256: 9d7917bb84100e4448ef2e7f2ab9dc25c3cee176f6361aca7592dbc5002fe057
Size: 42.10 MB - java-11-openjdk-jmods-11.0.22.0.7-1.el7.i686.rpm
MD5: 075b4e3d26fc24aeb36080ac7144ea72
SHA-256: 00afbbbc8b2b87e61928aaf3b13f36bb76ef01bd993dfb0f414c818ce9db734b
Size: 258.45 MB - java-11-openjdk-jmods-11.0.22.0.7-1.el7.x86_64.rpm
MD5: aa1b005c40ffe7e462e4b7fb01d10b82
SHA-256: c4ddb7f6552ab4d35e1f0adc668060762a332c29fae958f9a9c2e48c5403494c
Size: 306.29 MB - java-11-openjdk-jmods-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: 076e59b0cb10f2ab2cbc86abdbdb2003
SHA-256: 627e7ac7c07222051571dda0fc2089e3fa2d46f737dc1b76400b987633bdc580
Size: 147.47 MB - java-11-openjdk-jmods-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 3f7f46ca424aeeb309aa162e77f50b55
SHA-256: 369f8f24b373b27f475403bf3db887b4676f6a939dc7fdcdd40ac400c9d93899
Size: 174.42 MB - java-11-openjdk-src-11.0.22.0.7-1.el7.i686.rpm
MD5: 25eaa79eb7a1a21d3ccfa18c72b5745f
SHA-256: b1668b8b24aa70da12ff1b1a0b1589c92df5befa71fc8293ad0b25d1c1d94bde
Size: 45.74 MB - java-11-openjdk-src-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 8b33a37b95b2bc12108f4f80e8b89a6d
SHA-256: e2b93de49238efb4182033a942382c8b16f562df1a14827f17b44f02284ab083
Size: 50.48 MB - java-11-openjdk-src-debug-11.0.22.0.7-1.el7.i686.rpm
MD5: 85f840e811141a621a4135d6b68dbcf5
SHA-256: c1a33d7a25554ec055fa04a741ad84c0cfc1e3703966459fa582d7de3e9232ca
Size: 45.75 MB - java-11-openjdk-src-debug-11.0.22.0.7-1.el7.x86_64.rpm
MD5: 8e38e0b6923c617a1723aef52d946792
SHA-256: 76b37fe7209b8d4d7832d7f3de47300361434c0954d05cc6e7b3198de6ffdb85
Size: 50.49 MB
日本語