ELSA-2019-1146

ELSA-2019-1146 - java-1.8.0-openjdk security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2019-07-30

Description

[1:1.8.0.212.b04-1]
- Remove additions to EXTRA_CFLAGS and EXTRA_CPP_FLAGS which are now made by upstream.
- Resolves: rhbz#1693468

[1:1.8.0.212.b04-1]
- Add JDK-8223219 to avoid -fstack-protector overriding -fstack-protector-strong
- Resolves: rhbz#1693468

[1:1.8.0.212.b04-0]
- Update to aarch64-shenandoah-jdk8u212-b04.
- Resolves: rhbz#1693468

[1:1.8.0.212.b03-0]
- Update to aarch64-shenandoah-jdk8u212-b03.
- Resolves: rhbz#1693468

[1:1.8.0.212.b02-0]
- Add new clhsdb and hsdb binaries.
- Resolves: rhbz#1693468

[1:1.8.0.212.b02-0]
- Update to aarch64-shenandoah-jdk8u212-b02.
- Remove patches included upstream
- JDK-8197429/PR3546/RH153662{2,3}
- JDK-8184309/PR3596
- JDK-8210647/RH1632174
- JDK-8029661/PR3642/RH1477159
- JDK-8145096/PR3693
- Re-generate patches
- JDK-8203030
- Add casts to resolve s390 ambiguity in calls to log2_intptr
- Resolves: rhbz#1693468

[1:1.8.0.202.b08-0]
- Update to aarch64-shenandoah-jdk8u202-b08.
- Remove patches included upstream
- JDK-8211387/PR3559
- JDK-8207057/PR3613
- JDK-8165852/PR3468
- JDK-8073139/PR1758/RH1191652
- JDK-8044235
- JDK-8172850/RH1640127
- JDK-8209639/RH1640127
- JDK-8131048/PR3574/RH1498936
- JDK-8164920/PR3574/RH1498936
- Re-generate patches
- JDK-8210647/RH1632174
- Resolves: rhbz#1693468

[1:1.8.0.201.b13-0]
- Update to aarch64-shenandoah-jdk8u201-b13.
- Drop JDK-8160748 & JDK-8189170 AArch64 patches now applied upstream.
- Resolves: rhbz#1693468

[1:1.8.0.201.b09-4]
- Update patch for RH1566890.
- Renamed rh1566890_speculative_store_bypass_so_added_more_per_task_speculation_control_CVE_2018_3639 to
rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Added dependent patch,
rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Resolves: rhbz#1693468

[1:1.8.0.201.b09-3]
- removed config declaration from links to config files
- Resolves: rhbz#1661577

Related CVEs

CVE-2019-2602

CVE-2019-2684

CVE-2019-2698

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 8 (aarch64)	java-1.8.0-openjdk-1.8.0.212.b04-1.el8_0.src.rpm	e8ba7b2bd31cfae21352780d2276a9d2	-
	java-1.8.0-openjdk-1.8.0.212.b04-1.el8_0.aarch64.rpm	325aed623ac61a66260e518ac103ba11	-
	java-1.8.0-openjdk-accessibility-1.8.0.212.b04-1.el8_0.aarch64.rpm	daacf8c081304d5c5984997a566f0fdb	-
	java-1.8.0-openjdk-demo-1.8.0.212.b04-1.el8_0.aarch64.rpm	d37e35da86bb5bc5d79c331b5296dcc3	-
	java-1.8.0-openjdk-devel-1.8.0.212.b04-1.el8_0.aarch64.rpm	907f0aeec0f39d9c581c5ebbb39b581d	-
	java-1.8.0-openjdk-headless-1.8.0.212.b04-1.el8_0.aarch64.rpm	7fb4911cf9f7d6a912574c4becba0655	-
	java-1.8.0-openjdk-javadoc-1.8.0.212.b04-1.el8_0.noarch.rpm	a186dff80c772ed2535a948bc846e859	-
	java-1.8.0-openjdk-javadoc-zip-1.8.0.212.b04-1.el8_0.noarch.rpm	3ccb7d19fa3d4eeed90ff9a7de038572	-
	java-1.8.0-openjdk-src-1.8.0.212.b04-1.el8_0.aarch64.rpm	f5f39987844a4bf1049c86f041d93d88	-
Oracle Linux 8 (x86_64)	java-1.8.0-openjdk-1.8.0.212.b04-1.el8_0.src.rpm	e8ba7b2bd31cfae21352780d2276a9d2	-
	java-1.8.0-openjdk-1.8.0.212.b04-1.el8_0.x86_64.rpm	d024073fd38de33b879b40cbdf472271	-
	java-1.8.0-openjdk-accessibility-1.8.0.212.b04-1.el8_0.x86_64.rpm	e2745c4be8123da08b0c33465e8dda47	-
	java-1.8.0-openjdk-demo-1.8.0.212.b04-1.el8_0.x86_64.rpm	fd66b6347dfae96a73d841b9e65209c0	-
	java-1.8.0-openjdk-devel-1.8.0.212.b04-1.el8_0.x86_64.rpm	47f0321685aadd8147dcad6be628bd39	-
	java-1.8.0-openjdk-headless-1.8.0.212.b04-1.el8_0.x86_64.rpm	ffe4ed54f7dac17b0a839c1c2e71c6b4	-
	java-1.8.0-openjdk-javadoc-1.8.0.212.b04-1.el8_0.noarch.rpm	a186dff80c772ed2535a948bc846e859	-
	java-1.8.0-openjdk-javadoc-zip-1.8.0.212.b04-1.el8_0.noarch.rpm	3ccb7d19fa3d4eeed90ff9a7de038572	-
	java-1.8.0-openjdk-src-1.8.0.212.b04-1.el8_0.x86_64.rpm	29ac0606080f97d7a9230e331764b270	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team