1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5000-1] openjdk-11 security update

    From Moritz Muehlenhoff@21:1/5 to All on Mon Nov 1 20:50:01 2021
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5000-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff November 01, 2021 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : openjdk-11
    CVE ID : CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561
    CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578
    CVE-2021-35586 CVE-2021-35603

    Several vulnerabilities have been discovered in the OpenJDK Java
    runtime, which may result in denial of service, incorrect Kerberos ticket
    use, selection of weak ciphers or information disclosure.

    The oldstable distribution (buster), needs additional updates to be able
    to build 11.0.13. An update will be provided in a followup advisory.

    For the stable distribution (bullseye), these problems have been fixed in version 11.0.13+8-1~deb11u1.

    We recommend that you upgrade your openjdk-11 packages.

    For the detailed security status of openjdk-11 please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/openjdk-11

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmGAQX0ACgkQEMKTtsN8 TjZWChAAlAL0yGZM5vZ+sRUwB/1KmjdrL3cTzo8UV5T+01XA00yDeQsgWrpTWtYb p6vfzAUAuh0DqSp8RZj5jiFXzrTp9UyFcEdDA2g/3mwy60hdxJO11WB7oNCZhXf9 CrOqAm7SAIUgji7ZHC3WOhsigV9wjzdJ+Pprtpa96PNY0MUtIn2XItdBnSX6UpQX wf67zi19278wJKv1ZwuVs7ScdYFP0z0JWKhEBUPh0OShTBMprmHZ32BVQh5vLKNS EaXkHAjGrOpDHga0Yxc1eYPSXGmZocSRKBR3hyejL/MDquX50Z7/pOvGDhFs8vUl 1LiOOM7QBMmWpUSqNyW3DXFxpGmK61kfOcL0FU0JWCjqXn2u7hkIXs+gUNi3Waye lxfcVZRP+r4J3mCuru/Uo5Tc1MaPS2p96wNcWdHWRN39ptxEG+zMJAC/wWH34tKa 360UkWrmq30RdD0sqxXejoYr5DkxXlCW8/YXSokTOgyHzockqcL4UmMZ/+V1YKHD z1CbfmXxm9ptdRDPf8LoK9v0aGiRMzrbtVoxpKVRiAgcND7GesrT5f4A5YkS9+Ny qBgvxCsf9+a3GI3pTl4mB9oXGShPLWV8l1BvgZCqVBTTeo2YxhCQU9zAfgib84sH zpgx0XN3ox+dIeLB+H1o5/HQZzxl9tv67D8hTmlbC/XgiGw/GTk=
    =w/t7
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)