From andrew.gross at oracle.com  Tue Jan 18 21:41:41 2022
From: andrew.gross at oracle.com (Andrew H. Gross)
Date: Tue, 18 Jan 2022 13:41:41 -0800
Subject: OpenJDK Vulnerability Advisory: 2022/01/18
Message-ID: <bd75830d-aec4-2584-7204-7d2224050d65@oracle.com>

OpenJDK Vulnerability Advisory: 2022/01/18
vuln-report at openjdk.java.net
https://openjdk.java.net/groups/vulnerability/advisories

Releases affected: 7, 8, 11, 13, 15, and 17


OpenJDK CVEs:
 ??? CVE-2022-21341 CVE-2022-21365 CVE-2022-21282 CVE-2022-21291
 ??? CVE-2022-21277 CVE-2022-21305 CVE-2022-21299 CVE-2022-21296
 ??? CVE-2022-21349 CVE-2022-21283 CVE-2022-21340 CVE-2022-21293
 ??? CVE-2022-21294 CVE-2022-21360 CVE-2022-21366 CVE-2022-21248




OpenJFX CVEs:
 ??? None



Please note that defense-in-depth issues are not assigned CVEs.

These issues have been addressed, as applicable, in the following releases:
 ? 7u331, 8u322, 11.0.14, 13.0.10, 15.0.6, and 17.0.2

We recommend that you upgrade to these new releases as soon as possible.

For more detail about this advisory, please see:
https://openjdk.java.net/groups/vulnerability/advisories/2022-01-18

-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://mail.openjdk.java.net/pipermail/vuln-announce/attachments/20220118/39358045/OpenPGP_signature.bin>