OpenJDK Vulnerability Advisory: 2022/10/18
Andrew H. Gross
andrew.gross at oracle.com
Tue Oct 18 20:07:53 UTC 2022
OpenJDK Vulnerability Advisory: 2022/10/18
vuln-report at openjdk.org
https://openjdk.org/groups/vulnerability/advisories
Releases affected: 7, 8, 11, 13, 15, 17, and 19
OpenJDK CVEs:
CVE-2022-21618 CVE-2022-21619 CVE-2022-21624 CVE-2022-21626
CVE-2022-21628 CVE-2022-39399
OpenJFX CVEs:
None
Please note that defense-in-depth issues are not assigned CVEs.
These issues have been addressed, as applicable, in the following releases:
7u361, 8u352, 11.0.17, 13.0.13, 15.0.9, 17.0.5, and 19.0.1
We recommend that you upgrade to these new releases as soon as possible.
For more detail about this advisory, please see:
https://openjdk.org/groups/vulnerability/advisories/2022-10-18
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0x27F209491C0FE9C1.asc
Type: application/pgp-keys
Size: 4134 bytes
Desc: OpenPGP public key
URL: <https://mail.openjdk.org/pipermail/vuln-announce/attachments/20221018/9abd0fe4/OpenPGP_0x27F209491C0FE9C1.asc>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://mail.openjdk.org/pipermail/vuln-announce/attachments/20221018/9abd0fe4/OpenPGP_signature.sig>
More information about the vuln-announce
mailing list