Security update for java-1_8_0-openjdk SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2023:2238-1 Final 1 1 2023-05-17T15:21:47Z current 2023-05-17T15:21:47Z 2023-05-17T15:21:47Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for java-1_8_0-openjdk This update for java-1_8_0-openjdk fixes the following issues: - Updated to version jdk8u372 (icedtea-3.27.0): - CVE-2023-21930: Fixed an issue in the JSSE component that could allow an attacker to access critical data without authorization (bsc#1210628). - CVE-2023-21937: Fixed an issue in the Networking component that could allow an attacker to update, insert or delete some data without authorization (bsc#1210631). - CVE-2023-21938: Fixed an issue in the Libraries component that could allow an attacker to update, insert or delete some data without authorization (bsc#1210632). - CVE-2023-21939: Fixed an issue in the Swing component that could allow an attacker to update, insert or delete some data without authorization (bsc#1210634). - CVE-2023-21954: Fixed an issue in the Hotspot component that could allow an attacker to access critical data without authorization (bsc#1210635). - CVE-2023-21967: Fixed an issue in the JSSE component that could allow an attacker to cause a hang or frequently repeatable crash without authorization (bsc#1210636). - CVE-2023-21968: Fixed an issue in the Libraries component that could allow an attacker to update, insert or delete some data without authorization (bsc#1210637). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2023-2238,SUSE-OpenStack-Cloud-9-2023-2238,SUSE-OpenStack-Cloud-Crowbar-9-2023-2238,SUSE-SLE-SAP-12-SP4-2023-2238,SUSE-SLE-SERVER-12-SP2-BCL-2023-2238,SUSE-SLE-SERVER-12-SP4-ESPOS-2023-2238,SUSE-SLE-SERVER-12-SP4-LTSS-2023-2238,SUSE-SLE-SERVER-12-SP5-2023-2238 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ Link for SUSE-SU-2023:2238-1 https://lists.suse.com/pipermail/sle-updates/2023-May/029441.html E-Mail link for SUSE-SU-2023:2238-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1210628 SUSE Bug 1210628 https://bugzilla.suse.com/1210631 SUSE Bug 1210631 https://bugzilla.suse.com/1210632 SUSE Bug 1210632 https://bugzilla.suse.com/1210634 SUSE Bug 1210634 https://bugzilla.suse.com/1210635 SUSE Bug 1210635 https://bugzilla.suse.com/1210636 SUSE Bug 1210636 https://bugzilla.suse.com/1210637 SUSE Bug 1210637 https://www.suse.com/security/cve/CVE-2023-21930/ SUSE CVE CVE-2023-21930 page https://www.suse.com/security/cve/CVE-2023-21937/ SUSE CVE CVE-2023-21937 page https://www.suse.com/security/cve/CVE-2023-21938/ SUSE CVE CVE-2023-21938 page https://www.suse.com/security/cve/CVE-2023-21939/ SUSE CVE CVE-2023-21939 page https://www.suse.com/security/cve/CVE-2023-21954/ SUSE CVE CVE-2023-21954 page https://www.suse.com/security/cve/CVE-2023-21967/ SUSE CVE CVE-2023-21967 page https://www.suse.com/security/cve/CVE-2023-21968/ SUSE CVE CVE-2023-21968 page SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9 java-1_8_0-openjdk-1.8.0.372-27.87.1 java-1_8_0-openjdk-accessibility-1.8.0.372-27.87.1 java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 java-1_8_0-openjdk-javadoc-1.8.0.372-27.87.1 java-1_8_0-openjdk-src-1.8.0.372-27.87.1 java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP5 java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP5 java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP5 java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server 12 SP5 java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud 9 java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud 9 java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud 9 java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud 9 java-1_8_0-openjdk-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud Crowbar 9 java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud Crowbar 9 java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud Crowbar 9 java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 as a component of SUSE OpenStack Cloud Crowbar 9 unknown CVE-2023-21930 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 important 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ https://www.suse.com/security/cve/CVE-2023-21930.html CVE-2023-21930 https://bugzilla.suse.com/1210628 SUSE Bug 1210628 unknown CVE-2023-21937 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 low 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ https://www.suse.com/security/cve/CVE-2023-21937.html CVE-2023-21937 https://bugzilla.suse.com/1210631 SUSE Bug 1210631 unknown CVE-2023-21938 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 low 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ https://www.suse.com/security/cve/CVE-2023-21938.html CVE-2023-21938 https://bugzilla.suse.com/1210632 SUSE Bug 1210632 unknown CVE-2023-21939 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 moderate 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ https://www.suse.com/security/cve/CVE-2023-21939.html CVE-2023-21939 https://bugzilla.suse.com/1210634 SUSE Bug 1210634 unknown CVE-2023-21954 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 moderate 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ https://www.suse.com/security/cve/CVE-2023-21954.html CVE-2023-21954 https://bugzilla.suse.com/1210635 SUSE Bug 1210635 unknown CVE-2023-21967 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 moderate 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ https://www.suse.com/security/cve/CVE-2023-21967.html CVE-2023-21967 https://bugzilla.suse.com/1210636 SUSE Bug 1210636 unknown CVE-2023-21968 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP2-BCL:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP4-LTSS:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-demo-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-devel-1.8.0.372-27.87.1 SUSE OpenStack Cloud Crowbar 9:java-1_8_0-openjdk-headless-1.8.0.372-27.87.1 low 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232238-1/ https://www.suse.com/security/cve/CVE-2023-21968.html CVE-2023-21968 https://bugzilla.suse.com/1210637 SUSE Bug 1210637