SUSE-SU-2021:0670-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2021/suse-su-20210670-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2021:0670-1
Upstream
Related
Published
2021-03-01T16:36:34Z
Modified
2026-01-30T01:36:53.886026Z
Summary
Security update for java-1_8_0-ibm
Details

This update for java-180-ibm fixes the following issues:

  • Update to Java 8.0 Service Refresh 6 Fix Pack 25 [bsc#1182186, bsc#1181239, CVE-2020-27221, CVE-2020-14803]
    • CVE-2020-27221: Potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding.
    • CVE-2020-14803: Unauthenticated attacker with network access via multiple protocols allows to compromise Java SE.
References

Affected packages

SUSE:Enterprise Storage 6
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Enterprise%20Storage%206

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Linux Enterprise Module for Legacy 15 SP2
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Linux Enterprise Server 15 SP1-BCL
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Linux Enterprise Server 15 SP1-LTSS
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Linux Enterprise Server 15-LTSS
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Linux Enterprise Server for SAP Applications 15
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Linux Enterprise Server for SAP Applications 15 SP1
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Manager Proxy 4.0
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Manager%20Proxy%204.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Manager Retail Branch Server 4.0
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"
SUSE:Manager Server 4.0
java-1_8_0-ibm

Package

Name
java-1_8_0-ibm
Purl
pkg:rpm/suse/java-1_8_0-ibm&distro=SUSE%20Manager%20Server%204.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.0_sr6.25-3.50.1

Ecosystem specific 

{
    "binaries": [
        {
            "java-1_8_0-ibm-plugin": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-alsa": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm-devel": "1.8.0_sr6.25-3.50.1",
            "java-1_8_0-ibm": "1.8.0_sr6.25-3.50.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0670-1.json"