OpenJDK Vulnerability Advisory: 2021/10/19
Andrew H. Gross
andrew.gross at oracle.com
Wed Oct 20 16:35:17 UTC 2021
vuln-report at openjdk.java.net
https://openjdk.java.net/groups/vulnerability/advisories
Releases affected: 7, 8, 11, 13, 15, and 17
OpenJDK CVEs:
CVE-2021-35567 CVE-2021-35550 CVE-2021-35586 CVE-2021-35564
CVE-2021-35561 CVE-2021-35565 CVE-2021-35559 CVE-2021-35578
CVE-2021-35556 CVE-2021-35603 CVE-2021-35588
OpenJFX CVEs:
CVE-2021-3517 CVE-2021-3522
Please note that defense-in-depth issues are not assigned CVEs.
These issues have been addressed, as applicable, in the following releases:
7u321, 8u312, 11.0.13, 13.0.9, 15.0.5, and 17.0.1
We recommend that you upgrade to these new releases as soon as possible.
For more detail about this advisory, please see:
https://openjdk.java.net/groups/vulnerability/advisories/2021-10-19
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://mail.openjdk.java.net/pipermail/vuln-announce/attachments/20211020/1a7bb009/OpenPGP_signature.bin>
More information about the vuln-announce
mailing list