QID 240054
Date Published: 2022-02-02
QID 240054: Red Hat Update for java-1.8.0-ibm (RHSA-2022:0345)
ibm java se version 8 includes the ibm java runtime environment and the ibm java software development kit.
Security Fix(es):- oracle jdk: unspecified vulnerability fixed in 8u311 (deployment) (cve-2021-35560)
- openjdk: loop in httpsserver triggered during tls session close (jsse, 8254967) (cve-2021-35565)
- openjdk: excessive memory allocation in rtfparser (swing, 8265167) (cve-2021-35556)
- openjdk: excessive memory allocation in rtfreader (swing, 8265580) (cve-2021-35559)
- openjdk: certificates with end dates too far in the future can corrupt keystore (keytool, 8266137) (cve-2021-35564)
- openjdk: unexpected exception raised during tls handshake (jsse, 8267729) (cve-2021-35578)
- openjdk: excessive memory allocation in bmpimagereader (imageio, 8267735) (cve-2021-35586)
- ibm jdk: illegalaccesserror exception not thrown for methodhandles that invoke inaccessible interface methods (cve-2021-41035)
Affected Products:
- Red Hat enterprise linux for x86_64 8 x86_64
- Red Hat enterprise linux for ibm z systems 8 s390x
- Red Hat enterprise linux for power, little endian 8 ppc64le
Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Red Hat security advisory RHSA-2022:0345 for updates and patch information.
Vendor References
- RHSA-2022:0345 -
access.redhat.com/errata/RHSA-2022:0345
CVEs related to QID 240054
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| RHSA-2022:0345 | Red Hat Enterprise Linux |
access.redhat.com/errata/RHSA-2022:0345 |