Overview

File _patchinfo of Package patchinfo.14926

<patchinfo incident="14926">
  <issue tracker="bnc" id="1160398">java-1_8_0-openjdk fails with -fno-common</issue>
  <issue tracker="bnc" id="1171352">L3: OpenJDK 1.8 cannot read PEM X.509 cert with whitespaces after header or footer</issue>
  <issue tracker="bnc" id="1169511">VUL-0: java-1_7_0-openjdk,java-1_8_0-openjdk,java-11-openjdk: Oracle April 2020 CPU</issue>
  <issue tracker="cve" id="2020-2830"/>
  <issue tracker="cve" id="2020-2805"/>
  <issue tracker="cve" id="2020-2803"/>
  <issue tracker="cve" id="2020-2800"/>
  <issue tracker="cve" id="2020-2773"/>
  <issue tracker="cve" id="2020-2754"/>
  <issue tracker="cve" id="2020-2781"/>
  <issue tracker="cve" id="2020-2755"/>
  <issue tracker="cve" id="2020-2756"/>
  <issue tracker="cve" id="2020-2757"/>
  <packager>fstrba</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for java-1_8_0-openjdk</summary>
  <description>This update for java-1_8_0-openjdk to version jdk8u252 fixes the following issues:

- CVE-2020-2754: Forward references to Nashorn (bsc#1169511)
- CVE-2020-2755: Improve Nashorn matching (bsc#1169511)
- CVE-2020-2756: Better mapping of serial ENUMs (bsc#1169511)
- CVE-2020-2757: Less Blocking Array Queues (bsc#1169511)
- CVE-2020-2773: Better signatures in XML (bsc#1169511)
- CVE-2020-2781: Improve TLS session handling (bsc#1169511)
- CVE-2020-2800: Better Headings for HTTP Servers (bsc#1169511)
- CVE-2020-2803: Enhance buffering of byte buffers (bsc#1169511)
- CVE-2020-2805: Enhance typing of methods (bsc#1169511)
- CVE-2020-2830: Better Scanner conversions (bsc#1169511)
- Ignore whitespaces after the header or footer in PEM X.509 cert (bsc#1171352)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places