[security-announce] openSUSE-SU-2018:2247-1: moderate: Security update for java-11-openjdk

openSUSE Security Update: Security update for java-11-openjdk ______________________________________________________________________________ Announcement ID: openSUSE-SU-2018:2247-1 Rating: moderate References: #1101645 #1101651 #1101655 #1101656 Cross-References: CVE-2018-2940 CVE-2018-2952 CVE-2018-2972 CVE-2018-2973 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This java-11-openjdk update to version jdk-11+24 fixes the following issues: Security issues fixed: - CVE-2018-2940: Fix unspecified vulnerability in subcomponent Libraries (bsc#1101645). - CVE-2018-2952: Fix unspecified vulnerability in subcomponent Concurrency (bsc#1101651). - CVE-2018-2972: Fix unspecified vulnerability in subcomponent Security (bsc#1101655). - CVE-2018-2973: Fix unspecified vulnerability in subcomponent JSSE (bsc#1101656). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2018-830=1 Package List: - openSUSE Leap 15.0 (noarch): java-11-openjdk-javadoc-11.0.0.0~24-lp150.2.3.2 - openSUSE Leap 15.0 (x86_64): java-11-openjdk-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-accessibility-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-accessibility-debuginfo-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-debuginfo-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-debugsource-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-demo-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-devel-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-headless-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-jmods-11.0.0.0~24-lp150.2.3.2 java-11-openjdk-src-11.0.0.0~24-lp150.2.3.2 References: https://www.suse.com/security/cve/CVE-2018-2940.html https://www.suse.com/security/cve/CVE-2018-2952.html https://www.suse.com/security/cve/CVE-2018-2972.html https://www.suse.com/security/cve/CVE-2018-2973.html https://bugzilla.suse.com/1101645 https://bugzilla.suse.com/1101651 https://bugzilla.suse.com/1101655 https://bugzilla.suse.com/1101656 -- To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security-announce+help@opensuse.org