MGASA-2024-0364
- Source
- https://advisories.mageia.org/MGASA-2024-0364.html
- Import Source
- https://advisories.mageia.org/MGASA-2024-0364.json
- JSON Data
- https://api.osv.dev/v1/vulns/MGASA-2024-0364
- Related
- Published
- 2024-11-13T18:48:01Z
- Modified
- 2024-11-13T18:14:55Z
- Summary
- Updated java-1.8.0-openjdk, java-11-openjdk, java-17-openjdk, java-21-openjdk & java-latest-openjdk packages fix security vulnerabilities
- Details
-
giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function. (CVE-2023-48161) Array indexing integer overflow. (CVE-2024-21210) HTTP client improper handling of maxHeaderSize. (CVE-2024-21208) Unbounded allocation leads to out-of-memory error. (CVE-2024-21217) Integer conversion error leads to incorrect range check. (CVE-2024-21235)
- References
-
- https://advisories.mageia.org/MGASA-2024-0364.html
- https://bugs.mageia.org/show_bug.cgi?id=33648
- https://access.redhat.com/errata/RHSA-2024:8117
- https://access.redhat.com/errata/RHSA-2024:8121
- https://access.redhat.com/errata/RHSA-2024:8124
- https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixJAVA
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:9 / java-17-openjdk
Package
- Name
- java-17-openjdk
- Purl
- pkg:rpm/mageia/java-17-openjdk?distro=mageia-9
Mageia:9 / java-11-openjdk
Package
- Name
- java-11-openjdk
- Purl
- pkg:rpm/mageia/java-11-openjdk?distro=mageia-9
Mageia:9 / java-1.8.0-openjdk
Package
- Name
- java-1.8.0-openjdk
- Purl
- pkg:rpm/mageia/java-1.8.0-openjdk?distro=mageia-9
Mageia:9 / java-latest-openjdk
Package
- Name
- java-latest-openjdk
- Purl
- pkg:rpm/mageia/java-latest-openjdk?distro=mageia-9