OpenJDK Vulnerability Advisory: 2019/10/15 - Update
Andrew Gross
andrew.gross at oracle.com
Tue Nov 5 22:07:30 UTC 2019
OpenJDK Vulnerability Advisory: 2019/10/15
vuln-report at openjdk.java.net
https://openjdk.java.net/groups/vulnerability/advisories
Releases affected: 7, 8, 11, and 13
CVEs:
CVE-2019-2949 CVE-2019-2989 CVE-2019-2958 CVE-2019-2975
CVE-2019-2977 CVE-2019-2999 CVE-2019-2981 CVE-2019-2973
CVE-2019-2983 CVE-2019-2988 CVE-2019-2978 CVE-2019-2964
CVE-2019-2992 CVE-2019-2962 CVE-2019-2987 CVE-2019-2894
CVE-2019-2933 CVE-2019-2945*
These issues have been addressed, as applicable, in the following releases:
7u241, 8u232, 11.0.5, and 13.0.1
We recommend that you upgrade to these new releases as soon as possible.
* CVE-2019-2945 was inadvertently omitted from the original posting.
For more detail about this advisory, please see:
https://openjdk.java.net/groups/vulnerability/advisories/2019-10-15
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://mail.openjdk.java.net/pipermail/vuln-announce/attachments/20191105/b3dca110/signature.asc>
More information about the vuln-announce
mailing list