ELSA-2023-5733

ULN >
Oracle Linux Errata repository >
ELSA-2023-5733

ELSA-2023-5733 - java-1.8.0-openjdk security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2023-11-02

Description

[1:1.8.0.392.b08-3.0.1]
- Update to shenandoah-jdk8u392-b08 (GA)
- OpenJDK: segmentation fault in ciMethodBlocks (CVE-2022-40433)
- OpenJDK: IOR deserialization issue in CORBA (8303384) (CVE-2023-22067)
- OpenJDK: certificate path validation issue during client authentication (8309966) (CVE-2023-22081)
- A maximum signature file size property, jdk.jar.maxSignatureFileSize, was introduced in the 8u382 release of OpenJDK by JDK-8300596, with a default of 8 MB. This default proved to be too small for some JAR files. This release, 8u392, increases it to 16 MB. (RHEL-13593)

Related CVEs

CVE-2022-40433

CVE-2023-22081

CVE-2023-22067

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	249455a1f1dabdf934fc7d93c3de85af	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	249455a1f1dabdf934fc7d93c3de85af	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	8f794afc804f7303757dca9f95988117	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-demo-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	dc33e3da3f7e1f9964772b674244a9d8	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-demo-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	590018c92f13072ad03d8276967466a2	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-demo-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	783c36627718a44d7f5d58fb2dd76db4	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-devel-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	a86515050564cc63c9ed6ef4a59422c2	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-devel-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	aa1c0227248e19230d12f6d04cfff73f	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-devel-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	7143a1c92ad02e88b7bd44c65de24be3	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	3dc77ba19aad60360acf72e266fc5baa	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-headless-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	04ea624faf4328864dd1c3ffc3218d1e	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-headless-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	96729f8fff51e09be45e043db0d80261	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-headless-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	add612f48d002ada19538a65ff60b2ac	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-javadoc-1.8.0.392.b08-3.0.1.el9.noarch.rpm	1a7777da556383c3f2386dab585910e5	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-javadoc-zip-1.8.0.392.b08-3.0.1.el9.noarch.rpm	23fc9e5dda7883354489259ec03fc408	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	c906a06e96ecae69fb3d51a0233f0a53	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-src-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	37b82a40e1152b6636fa0b2f489ed53b	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-src-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	9b64ece01476d199999072c508061144	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-src-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	bef3d6659d91e8d5a780bd755a3bc253	-	ol9_aarch64_codeready_builder

Oracle Linux 9 (x86_64)	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	249455a1f1dabdf934fc7d93c3de85af	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	249455a1f1dabdf934fc7d93c3de85af	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	cac91a0635e5b68657a72f270082f37e	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-demo-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	14d685789fed1f06ded1ac97ba006cc5	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-demo-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	a5820fe5981de3969209c0a4657bf4bd	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-demo-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	fc13ddfbb838eef0a94a2409b2801b12	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-devel-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	5566e9ae1301197fae219a925662d19b	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-devel-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	8704cea162c7f6ee2398f600fba1c92b	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-devel-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	8cc0790a5638a1fe9c131a01be789e3e	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	22b0c50b6b5f3bd5237d9869e9ddc723	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-headless-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	dffbe51fa1a4bf0fcb62cc7a805e78f1	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-headless-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	8c2cae6dd14b88c685620c28f5288656	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-headless-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	064742ae910cfbf4acdc75fb2ac18d4c	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-javadoc-1.8.0.392.b08-3.0.1.el9.noarch.rpm	1a7777da556383c3f2386dab585910e5	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-javadoc-zip-1.8.0.392.b08-3.0.1.el9.noarch.rpm	23fc9e5dda7883354489259ec03fc408	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	2e70457c43ea05ce16ac679df12d8c63	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-src-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	71745bb7a11d5313ae2004bd7bdc68ca	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-src-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	05496728041871c15e7200a54f8800be	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-src-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	16f1b48bcf41e5e544f47752731abfb4	-	ol9_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691