SUSE-SU-2018:0005-1

Source
https://www.suse.com/support/update/announcement/2018/suse-su-20180005-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:0005-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2018:0005-1
Related
  • CVE-2016-10165
  • CVE-2016-9840
  • CVE-2016-9841
  • CVE-2016-9842
  • CVE-2016-9843
  • CVE-2017-10053
  • CVE-2017-10067
  • CVE-2017-10074
  • CVE-2017-10081
  • CVE-2017-10086
  • CVE-2017-10087
  • CVE-2017-10089
  • CVE-2017-10090
  • CVE-2017-10096
  • CVE-2017-10101
  • CVE-2017-10102
  • CVE-2017-10105
  • CVE-2017-10107
  • CVE-2017-10108
  • CVE-2017-10109
  • CVE-2017-10110
  • CVE-2017-10111
  • CVE-2017-10114
  • CVE-2017-10115
  • CVE-2017-10116
  • CVE-2017-10118
  • CVE-2017-10125
  • CVE-2017-10135
  • CVE-2017-10176
  • CVE-2017-10193
  • CVE-2017-10198
  • CVE-2017-10243
  • CVE-2017-10274
  • CVE-2017-10281
  • CVE-2017-10285
  • CVE-2017-10295
  • CVE-2017-10345
  • CVE-2017-10346
  • CVE-2017-10347
  • CVE-2017-10348
  • CVE-2017-10349
  • CVE-2017-10350
  • CVE-2017-10355
  • CVE-2017-10356
  • CVE-2017-10357
  • CVE-2017-10388
Published
2018-01-03T16:37:47Z
Modified
2018-01-03T16:37:47Z
Summary
Security update for java-1_7_0-openjdk
Details

This update for java-170-openjdk fixes the following issues:

Security issues fixed:

  • CVE-2017-10356: Fix issue inside subcomponent Security (bsc#1064084).
  • CVE-2017-10274: Fix issue inside subcomponent Smart Card IO (bsc#1064071).
  • CVE-2017-10281: Fix issue inside subcomponent Serialization (bsc#1064072).
  • CVE-2017-10285: Fix issue inside subcomponent RMI (bsc#1064073).
  • CVE-2017-10295: Fix issue inside subcomponent Networking (bsc#1064075).
  • CVE-2017-10388: Fix issue inside subcomponent Libraries (bsc#1064086).
  • CVE-2017-10346: Fix issue inside subcomponent Hotspot (bsc#1064078).
  • CVE-2017-10350: Fix issue inside subcomponent JAX-WS (bsc#1064082).
  • CVE-2017-10347: Fix issue inside subcomponent Serialization (bsc#1064079).
  • CVE-2017-10349: Fix issue inside subcomponent JAXP (bsc#1064081).
  • CVE-2017-10345: Fix issue inside subcomponent Serialization (bsc#1064077).
  • CVE-2017-10348: Fix issue inside subcomponent Libraries (bsc#1064080).
  • CVE-2017-10357: Fix issue inside subcomponent Serialization (bsc#1064085).
  • CVE-2017-10355: Fix issue inside subcomponent Networking (bsc#1064083).
  • CVE-2017-10102: Fix incorrect handling of references in DGC (bsc#1049316).
  • CVE-2017-10053: Fix reading of unprocessed image data in JPEGImageReader (bsc#1049305).
  • CVE-2017-10067: Fix JAR verifier incorrect handling of missing digest (bsc#1049306).
  • CVE-2017-10081: Fix incorrect bracket processing in function signature handling (bsc#1049309).
  • CVE-2017-10087: Fix insufficient access control checks in ThreadPoolExecutor (bsc#1049311).
  • CVE-2017-10089: Fix insufficient access control checks in ServiceRegistry (bsc#1049312).
  • CVE-2017-10090: Fix insufficient access control checks in AsynchronousChannelGroupImpl (bsc#1049313).
  • CVE-2017-10096: Fix insufficient access control checks in XML transformations (bsc#1049314).
  • CVE-2017-10101: Fix unrestricted access to com.sun.org.apache.xml.internal.resolver (bsc#1049315).
  • CVE-2017-10107: Fix insufficient access control checks in ActivationID (bsc#1049318).
  • CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
  • CVE-2017-10110: Fix insufficient access control checks in ImageWatched (bsc#1049321).
  • CVE-2017-10108: Fix unbounded memory allocation in BasicAttribute deserialization (bsc#1049319).
  • CVE-2017-10109: Fix unbounded memory allocation in CodeSource deserialization (bsc#1049320).
  • CVE-2017-10115: Fix unspecified vulnerability in subcomponent JCE (bsc#1049324).
  • CVE-2017-10118: Fix ECDSA implementation timing attack (bsc#1049326).
  • CVE-2017-10116: Fix LDAPCertStore following referrals to non-LDAP URL (bsc#1049325).
  • CVE-2017-10135: Fix PKCS#8 implementation timing attack (bsc#1049328).
  • CVE-2017-10176: Fix incorrect handling of certain EC points (bsc#1049329).
  • CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
  • CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
  • CVE-2017-10111: Fix checks in LambdaFormEditor (bsc#1049322).
  • CVE-2017-10243: Fix unspecified vulnerability in subcomponent JAX-WS (bsc#1049332).
  • CVE-2017-10125: Fix unspecified vulnerability in subcomponent deployment (bsc#1049327).
  • CVE-2017-10114: Fix unspecified vulnerability in subcomponent JavaFX (bsc#1049323).
  • CVE-2017-10105: Fix unspecified vulnerability in subcomponent deployment (bsc#1049317).
  • CVE-2017-10086: Fix unspecified in subcomponent JavaFX (bsc#1049310).
  • CVE-2017-10198: Fix incorrect enforcement of certificate path restrictions (bsc#1049331).
  • CVE-2017-10193: Fix incorrect key size constraint check (bsc#1049330).

Bug fixes:

  • Drop Exec Shield workaround to fix crashes on recent kernels, where Exec Shield is gone (bsc#1052318).
References

Affected packages

SUSE:OpenStack Cloud 6 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20OpenStack%20Cloud%206

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP2 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP3 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server for Raspberry Pi 12 SP2 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server 12-LTSS / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP1-LTSS / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP2 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP2 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP3 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP3 / java-1_7_0-openjdk

Package

Name
java-1_7_0-openjdk
Purl
purl:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.0.161-43.7.6

Ecosystem specific

{
    "binaries": [
        {
            "java-1_7_0-openjdk-demo": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-headless": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk-devel": "1.7.0.161-43.7.6",
            "java-1_7_0-openjdk": "1.7.0.161-43.7.6"
        }
    ]
}