These are all security issues fixed in the maven-3.8.1-2.3 package on the GA media of openSUSE Tumbleweed.