Overview

File _patchinfo of Package patchinfo.31460

<patchinfo incident="31460">
  <issue tracker="cve" id="2023-22067"/>
  <issue tracker="cve" id="2015-4000"/>
  <issue tracker="cve" id="2023-22081"/>
  <issue tracker="bnc" id="1211968">L3: SLES12SP5 vulnerable to CVE-2015-4000 (Logjam)?</issue>
  <issue tracker="bnc" id="1216374">VUL-0: CVE-2023-22081: java-1_8_0-openjdk,java-9-openjdk,java-10-openjdk,java-11-openjdk,java-17-openjdk: Oracle October 2023 CPU</issue>
  <issue tracker="bnc" id="1216379">VUL-0: CVE-2023-22067: java-1_8_0-openjdk: IOR deserialization issue in CORBA</issue>
  <packager>fstrba</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for java-1_8_0-openjdk</summary>
  <description>This update for java-1_8_0-openjdk fixes the following issues:

Update to version jdk8u392 (icedtea-3.29.0) October 2023 CPU:

- CVE-2023-22067: Fixed IOR deserialization issue in CORBA (bsc#1216379).
- CVE-2023-22081: Fixed certificate path validation issue during client authentication (bsc#1216374).
- CVE-2015-4000: Fixed Logjam issue in SLES12SP5 (bsc#1211968).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places