Hi,
You are receiving an AlmaLinux Security update email because you subscribed to
receive errata notifications from AlmaLinux.
AlmaLinux: 9
Type: Security
Severity: Moderate
Release date: 2023-02-10
Summary:
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment
and the OpenJDK 8 Java Software Development Kit.
Security Fix(es):
* OpenJDK: improper restrictions in CORBA deserialization (Serialization,
8285021) (CVE-2023-21830)
* OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Bug Fix(es):
* Prepare for the next quarterly OpenJDK upstream release (2023-01, 8u362)
[rhel-9] (BZ#2159912)
* solr broken due to access denied ("java.io.FilePermission"
"/etc/pki/java/cacerts" "read") [rhel-9, openjdk-8] (BZ#2163594)
Full details, updated packages, references, and other related information:
https://errata.almalinux.org/9/ALSA-2023-0210.html
This message is automatically generated, please don’t reply. For further
questions, please, contact us via the AlmaLinux community chat:
https://chat.almalinux.org/.
Want to change your notification settings? Sign in and manage mailing lists on
https://lists.almalinux.org.
Kind regards,
AlmaLinux Team
