Overview Repositories Revisions Requests Users Attributes Meta
Security update for java-1_8_0-openjdk

This update for java-1_8_0-openjdk to version 8u191 fixes the following issues:

Security issues fixed:

- CVE-2018-3136: Manifest better support (bsc#1112142)
- CVE-2018-3139: Better HTTP Redirection (bsc#1112143)
- CVE-2018-3149: Enhance JNDI lookups (bsc#1112144)
- CVE-2018-3169: Improve field accesses (bsc#1112146)
- CVE-2018-3180: Improve TLS connections stability (bsc#1112147)
- CVE-2018-3214: Better RIFF reading support (bsc#1112152)
- CVE-2018-13785: Upgrade JDK 8u to libpng 1.6.35 (bsc#1112153)
- CVE-2018-3183: Improve script engine support (bsc#1112148)
- CVE-2018-16435: heap-based buffer overflow in SetData function in cmsIT8LoadFromFile

This update was imported from the SUSE:SLE-15:Update update project.

Fixed bugs
bnc#1112148
VUL-0: CVE-2018-3183: java-1_8_0-openjdk, java-11-openjdk: Unspecified vulnerability in subcomponent: Scripting
bnc#1112147
VUL-0: CVE-2018-3180: java-1_7_0-openjdk, java-1_8_0-openjdk, java-11-openjdk: Unspecified vulnerability in subcomponent: JSSE
bnc#1112146
VUL-0: CVE-2018-3169: java-1_7_0-openjdk, java-1_8_0-openjdk, java-11-openjdk: Unspecified vulnerability in subcomponent: Hotspot
bnc#1112144
VUL-0: CVE-2018-3149: java-1_7_0-openjdk, java-1_8_0-openjdk, java-11-openjdk: Unspecified vulnerability in subcomponent: JNDI
bnc#1112143
VUL-0: CVE-2018-3139: java-1_7_0-openjdk, java-1_8_0-openjdk, java-11-openjdk: Unspecified vulnerability in subcomponent: Networking
bnc#1112142
VUL-0: CVE-2018-3136: java-1_7_0-openjdk, java-1_8_0-openjdk, java-11-openjdk: Unspecified vulnerability in subcomponent: Security
bnc#1112152
VUL-0: CVE-2018-3214: java-1_7_0-openjdk, java-1_8_0-openjdk: Unspecified vulnerability in subcomponent: Sound
bnc#1112153
VUL-0: CVE-2018-13785: java-1_7_0-openjdk, java-1_8_0-openjdk: Unspecified vulnerability in subcomponent: Deployment (libpng)
CVE-2018-3214
CVE-2018-3169
CVE-2018-3180
CVE-2018-3149
CVE-2018-3183
CVE-2018-13785
CVE-2018-3139
CVE-2018-3136
CVE-2018-16435
Selected Binaries
openSUSE Build Service is sponsored by
Places