{"affected":[{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.8.0-lp151.3.19.1","java-11-openjdk-accessibility":"11.0.8.0-lp151.3.19.1","java-11-openjdk-demo":"11.0.8.0-lp151.3.19.1","java-11-openjdk-devel":"11.0.8.0-lp151.3.19.1","java-11-openjdk-headless":"11.0.8.0-lp151.3.19.1","java-11-openjdk-javadoc":"11.0.8.0-lp151.3.19.1","java-11-openjdk-jmods":"11.0.8.0-lp151.3.19.1","java-11-openjdk-src":"11.0.8.0-lp151.3.19.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"java-11-openjdk","purl":"pkg:rpm/opensuse/java-11-openjdk&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.8.0-lp151.3.19.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for java-11-openjdk fixes the following issues:\n\n- Update to upstream tag jdk-11.0.8+10 (July 2020 CPU, bsc#1174157)\n  * Security fixes:\n    + JDK-8230613: Better ASCII conversions\n    + JDK-8231800: Better listing of arrays\n    + JDK-8232014: Expand DTD support\n    + JDK-8233234: Better Zip Naming\n    + JDK-8233239, CVE-2020-14562: Enhance TIFF support\n    + JDK-8233255: Better Swing Buttons\n    + JDK-8234032: Improve basic calendar services\n    + JDK-8234042: Better factory production of certificates\n    + JDK-8234418: Better parsing with CertificateFactory\n    + JDK-8234836: Improve serialization handling\n    + JDK-8236191: Enhance OID processing\n    + JDK-8236867, CVE-2020-14573: Enhance Graal interface handling\n    + JDK-8237117, CVE-2020-14556: Better ForkJoinPool behavior\n    + JDK-8237592, CVE-2020-14577: Enhance certificate verification\n    + JDK-8238002, CVE-2020-14581: Better matrix operations\n    + JDK-8238013: Enhance String writing\n    + JDK-8238804: Enhance key handling process\n    + JDK-8238842: AIOOBE in GIFImageReader.initializeStringTable\n    + JDK-8238843: Enhanced font handing\n    + JDK-8238920, CVE-2020-14583: Better Buffer support\n    + JDK-8238925: Enhance WAV file playback\n    + JDK-8240119, CVE-2020-14593: Less Affine Transformations\n    + JDK-8240482: Improved WAV file playback\n    + JDK-8241379: Update JCEKS support\n    + JDK-8241522: Manifest improved jar headers redux\n    + JDK-8242136, CVE-2020-14621: Better XML namespace handling\n  * Other changes:\n    + JDK-6933331: (d3d/ogl) java.lang.IllegalStateException:\n      Buffers have not been created\n    + JDK-7124307: JSpinner and changing value by mouse\n    + JDK-8022574: remove HaltNode code after uncommon trap calls\n    + JDK-8039082: [TEST_BUG] Test\n      java/awt/dnd/BadSerializationTest/BadSerializationTest.java\n      fails\n    + JDK-8040630: Popup menus and tooltips flicker with previous\n       popup contents when first shown\n    + JDK-8044365: (dc) MulticastSendReceiveTests.java failing with\n      ENOMEM when joining group (OS X 10.9)\n    + JDK-8048215: [TESTBUG]\n      java/lang/management/ManagementFactory/ThreadMXBeanProxy.java\n       Expected non-null LockInfo\n    + JDK-8051349: nsk/jvmti/scenarios/sampling/SP06/sp06t003 fails\n      in nightly\n    + JDK-8080353: JShell: Better error message on attempting to\n       add default method\n    + JDK-8139876: Exclude hanging nsk/stress/stack from execution\n      with deoptimization enabled\n    + JDK-8146090: java/lang/ref/ReachabilityFenceTest.java fails\n       with -XX:+DeoptimizeALot\n    + JDK-8153430: jdk regression test MletParserLocaleTest,\n       ParserInfiniteLoopTest reduce default timeout\n    + JDK-8156207: Resource allocated BitMaps are often cleared\n      unnecessarily\n    + JDK-8159740: JShell: corralled declarations do not have\n      correct source to wrapper mapping\n    + JDK-8175984: ICC_Profile has un-needed, not-empty finalize\n      method\n    + JDK-8176359: Frame#setMaximizedbounds not working properly in\n       multi screen environments\n    + JDK-8183369: RFC unconformity of HttpURLConnection with proxy\n    + JDK-8187078: -XX:+VerifyOops finds numerous problems when\n       running JPRT\n    + JDK-8189861: Refactor CacheFind\n    + JDK-8191169: java/net/Authenticator/B4769350.java failed\n      intermittently\n    + JDK-8191930: [Graal] emits unparseable XML into compile log\n    + JDK-8193879: Java debugger hangs on method invocation\n    + JDK-8196019: java/awt/Window/Grab/GrabTest.java fails on\n      Windows\n    + JDK-8196181: sun/java2d/GdiRendering/InsetClipping.java fails\n    + JDK-8198000:\n      java/awt/List/EmptyListEventTest/EmptyListEventTest.java\n      debug assert on Windows\n    + JDK-8198001: java/awt/Menu/WrongParentAfterRemoveMenu/\n      /WrongParentAfterRemoveMenu.java debug assert on Windows\n    + JDK-8198339: Test javax/swing/border/Test6981576.java is\n      unstable\n    + JDK-8200701: jdk/jshell/ExceptionsTest.java fails on Windows,\n      after JDK-8198801\n    + JDK-8203264: JNI exception pending in\n      PlainDatagramSocketImpl.c:740\n    + JDK-8203672: JNI exception pending in PlainSocketImpl.c\n    + JDK-8203673: JNI exception pending in\n      DualStackPlainDatagramSocketImpl.c:398\n    + JDK-8204834: Fix confusing 'allocate' naming in OopStorage\n    + JDK-8205399: Set node color on pinned HashMap.TreeNode\n      deletion\n    + JDK-8205653: test/jdk/sun/management/jmxremote/bootstrap/\n      /RmiRegistrySslTest.java and RmiSslBootstrapTest.sh fail with\n      handshake_failure\n    + JDK-8206179: com/sun/management/OperatingSystemMXBean/\n      /GetCommittedVirtualMemorySize.java fails with Committed\n      virtual memory size illegal value\n    + JDK-8207334: VM times out in VM_HandshakeAllThreads::doit()\n      with RunThese30M\n    + JDK-8208277: Code cache heap (-XX:ReservedCodeCacheSize)\n      doesn't work with 1GB LargePages\n\nThis update was imported from the SUSE:SLE-15:Update update project.","id":"openSUSE-SU-2020:1175-1","modified":"2020-08-09T18:15:29Z","published":"2020-08-09T18:15:29Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OBVIPKYXH7UFEA4YILLJTCJFAKUA36GY/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1174157"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14556"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14562"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14573"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14577"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14581"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14583"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14593"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-14621"}],"related":["CVE-2020-14556","CVE-2020-14562","CVE-2020-14573","CVE-2020-14577","CVE-2020-14581","CVE-2020-14583","CVE-2020-14593","CVE-2020-14621"],"summary":"Security update for java-11-openjdk","upstream":["CVE-2020-14556","CVE-2020-14562","CVE-2020-14573","CVE-2020-14577","CVE-2020-14581","CVE-2020-14583","CVE-2020-14593","CVE-2020-14621"]}