The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 or later. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "openjdk-8-jre-jamvm": "8u342-b07-0ubuntu1~16.04", "openjdk-8-doc": "8u342-b07-0ubuntu1~16.04", "openjdk-8-dbg": "8u342-b07-0ubuntu1~16.04", "openjdk-8-jdk-headless": "8u342-b07-0ubuntu1~16.04", "openjdk-8-demo": "8u342-b07-0ubuntu1~16.04", "openjdk-8-jre-zero": "8u342-b07-0ubuntu1~16.04", "openjdk-8-jre-dbgsym": "8u342-b07-0ubuntu1~16.04", "openjdk-8-source": "8u342-b07-0ubuntu1~16.04", "openjdk-8-jre-headless": "8u342-b07-0ubuntu1~16.04", "openjdk-8-jre-headless-dbgsym": "8u342-b07-0ubuntu1~16.04", "openjdk-8-jdk": "8u342-b07-0ubuntu1~16.04", "openjdk-8-jre": "8u342-b07-0ubuntu1~16.04", "openjdk-8-demo-dbgsym": "8u342-b07-0ubuntu1~16.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-17-dbg": "17.0.4+8-1~18.04", "openjdk-17-jdk": "17.0.4+8-1~18.04", "openjdk-17-jdk-headless": "17.0.4+8-1~18.04", "openjdk-17-demo": "17.0.4+8-1~18.04", "openjdk-17-doc": "17.0.4+8-1~18.04", "openjdk-17-source": "17.0.4+8-1~18.04", "openjdk-17-jre": "17.0.4+8-1~18.04", "openjdk-17-jre-zero": "17.0.4+8-1~18.04", "openjdk-17-jre-headless": "17.0.4+8-1~18.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-8-dbg": "8u342-b07-0ubuntu1~18.04", "openjdk-8-jdk-headless": "8u342-b07-0ubuntu1~18.04", "openjdk-8-demo": "8u342-b07-0ubuntu1~18.04", "openjdk-8-jre-zero": "8u342-b07-0ubuntu1~18.04", "openjdk-8-jre-headless": "8u342-b07-0ubuntu1~18.04", "openjdk-8-source": "8u342-b07-0ubuntu1~18.04", "openjdk-8-jdk": "8u342-b07-0ubuntu1~18.04", "openjdk-8-jre": "8u342-b07-0ubuntu1~18.04", "openjdk-8-doc": "8u342-b07-0ubuntu1~18.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-11-dbg": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-demo": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-source": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-jdk": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-doc": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-jdk-headless": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-jre-zero": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-jre": "11.0.16+8-0ubuntu1~18.04", "openjdk-11-jre-headless": "11.0.16+8-0ubuntu1~18.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-17-dbg": "17.0.4+8-1~20.04", "openjdk-17-jdk": "17.0.4+8-1~20.04", "openjdk-17-jdk-headless": "17.0.4+8-1~20.04", "openjdk-17-demo": "17.0.4+8-1~20.04", "openjdk-17-doc": "17.0.4+8-1~20.04", "openjdk-17-source": "17.0.4+8-1~20.04", "openjdk-17-jre": "17.0.4+8-1~20.04", "openjdk-17-jre-zero": "17.0.4+8-1~20.04", "openjdk-17-jre-headless": "17.0.4+8-1~20.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-8-dbg": "8u342-b07-0ubuntu1~20.04", "openjdk-8-jdk-headless": "8u342-b07-0ubuntu1~20.04", "openjdk-8-demo": "8u342-b07-0ubuntu1~20.04", "openjdk-8-jre-zero": "8u342-b07-0ubuntu1~20.04", "openjdk-8-jre-headless": "8u342-b07-0ubuntu1~20.04", "openjdk-8-source": "8u342-b07-0ubuntu1~20.04", "openjdk-8-jdk": "8u342-b07-0ubuntu1~20.04", "openjdk-8-jre": "8u342-b07-0ubuntu1~20.04", "openjdk-8-doc": "8u342-b07-0ubuntu1~20.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-11-dbg": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-demo": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-source": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-jdk": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-doc": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-jdk-headless": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-jre-zero": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-jre": "11.0.16+8-0ubuntu1~20.04", "openjdk-11-jre-headless": "11.0.16+8-0ubuntu1~20.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-17-dbg": "17.0.4+8-1~22.04", "openjdk-17-jdk": "17.0.4+8-1~22.04", "openjdk-17-jdk-headless": "17.0.4+8-1~22.04", "openjdk-17-demo": "17.0.4+8-1~22.04", "openjdk-17-doc": "17.0.4+8-1~22.04", "openjdk-17-source": "17.0.4+8-1~22.04", "openjdk-17-jre": "17.0.4+8-1~22.04", "openjdk-17-jre-zero": "17.0.4+8-1~22.04", "openjdk-17-jre-headless": "17.0.4+8-1~22.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-18-jdk-headless": "18.0.2+9-2~22.04", "openjdk-18-jre": "18.0.2+9-2~22.04", "openjdk-18-doc": "18.0.2+9-2~22.04", "openjdk-18-jre-zero": "18.0.2+9-2~22.04", "openjdk-18-source": "18.0.2+9-2~22.04", "openjdk-18-jdk": "18.0.2+9-2~22.04", "openjdk-18-jre-headless": "18.0.2+9-2~22.04", "openjdk-18-demo": "18.0.2+9-2~22.04", "openjdk-18-dbg": "18.0.2+9-2~22.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-8-dbg": "8u342-b07-0ubuntu1~22.04", "openjdk-8-jdk-headless": "8u342-b07-0ubuntu1~22.04", "openjdk-8-demo": "8u342-b07-0ubuntu1~22.04", "openjdk-8-jre-zero": "8u342-b07-0ubuntu1~22.04", "openjdk-8-jre-headless": "8u342-b07-0ubuntu1~22.04", "openjdk-8-source": "8u342-b07-0ubuntu1~22.04", "openjdk-8-jdk": "8u342-b07-0ubuntu1~22.04", "openjdk-8-jre": "8u342-b07-0ubuntu1~22.04", "openjdk-8-doc": "8u342-b07-0ubuntu1~22.04" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "openjdk-11-dbg": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-demo": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-source": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-jdk": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-doc": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-jdk-headless": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-jre-zero": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-jre": "11.0.16+8-0ubuntu1~22.04", "openjdk-11-jre-headless": "11.0.16+8-0ubuntu1~22.04" } ] }