MGASA-2024-0056

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2024-0056.html

Import Source

https://advisories.mageia.org/MGASA-2024-0056.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2024-0056

Related

Published

2024-03-13T23:14:37Z

Modified

2024-03-13T22:58:55Z

Summary

Updated java-17-openjdk packages fix security vulnerabilities

Details

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): OpenJDK: memory corruption issue on x86_64 with AVX-512 (8317121) (CVE-2023-22025) OpenJDK: certificate path validation issue during client authentication (8309966) (CVE-2023-22081) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:9 / java-17-openjdk

Package

Name: java-17-openjdk
Purl: pkg:rpm/mageia/java-17-openjdk?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

17.0.10.0.7-1.mga9

Ecosystem specific

{
    "section": "core"
}