Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
java-1_8_0-openjdk
(any)
java-1_8_0-openjdk-debuginfo
(any)
java-1_8_0-openjdk-debugsource
(any)
java-1_8_0-openjdk-demo
(any)
java-1_8_0-openjdk-demo-debuginfo
(any)
java-1_8_0-openjdk-devel
(any)
java-1_8_0-openjdk-devel-debuginfo
(any)
java-1_8_0-openjdk-headless
(any)
java-1_8_0-openjdk-headless-debuginfo
(any)
Описание
Уведомление безопасности об уязвимостях SUSE OpenStack Cloud 7, SUSE Linux Enterprise Server 12-SP2-LTSS, SUSE Linux Enterprise Desktop 12-SP3, SUSE Linux Enterprise Server 12-SP1-LTSS, SUSE Linux Enterprise Server 12-SP3, SUSE Linux Enterprise Server for SAP 12-SP2, SUSE Enterprise Storage 4
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE OpenStack Cloud 7:
s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server 12-SP2-LTSS:
ppc64le, s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Desktop 12-SP3:
x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server 12-SP1-LTSS:
ppc64le, s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server 12-SP3:
aarch64, ppc64le, s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server for SAP 12-SP2:
ppc64le, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Enterprise Storage 4:
x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE OpenStack Cloud 7:
s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server 12-SP2-LTSS:
ppc64le, s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Desktop 12-SP3:
x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server 12-SP1-LTSS:
ppc64le, s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server 12-SP3:
aarch64, ppc64le, s390x, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Linux Enterprise Server for SAP 12-SP2:
ppc64le, x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
SUSE Enterprise Storage 4:
x86_64:
java-1_8_0-openjdk - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-demo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-headless-debuginfo - 1.8.0.181-27.26.2
java-1_8_0-openjdk-devel - 1.8.0.181-27.26.2
java-1_8_0-openjdk-debugsource - 1.8.0.181-27.26.2
Ссылки
http://lists.suse.com/pipermail/sle-security-updates/2018-October/004649.html
https://bugzilla.suse.com/1101644
https://bugzilla.suse.com/1101645
https://bugzilla.suse.com/1101651
https://bugzilla.suse.com/1101656
https://bugzilla.suse.com/1106812
Источник: CVE
Наименование: CVE-2018-2938
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2938
Источник: CVE
Наименование: CVE-2018-2940
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2940
Источник: CVE
Наименование: CVE-2018-2973
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2973
Источник: CVE
Наименование: CVE-2018-2952
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2952
Источник: CVE
Наименование: CVE-2018-3639
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3639
https://bugzilla.suse.com/1101644
https://bugzilla.suse.com/1101645
https://bugzilla.suse.com/1101651
https://bugzilla.suse.com/1101656
https://bugzilla.suse.com/1106812
Источник: CVE
Наименование: CVE-2018-2938
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2938
Источник: CVE
Наименование: CVE-2018-2940
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2940
Источник: CVE
Наименование: CVE-2018-2973
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2973
Источник: CVE
Наименование: CVE-2018-2952
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2952
Источник: CVE
Наименование: CVE-2018-3639
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3639