ELSA-2023-5733

ULN >
Oracle Linux Errata repository >
ELSA-2023-5733

ELSA-2023-5733 - java-1.8.0-openjdk security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-11-02

Description

[1:1.8.0.392.b08-3.0.1]
- Update to shenandoah-jdk8u392-b08 (GA)
- OpenJDK: segmentation fault in ciMethodBlocks (CVE-2022-40433)
- OpenJDK: IOR deserialization issue in CORBA (8303384) (CVE-2023-22067)
- OpenJDK: certificate path validation issue during client authentication (8309966) (CVE-2023-22081)
- A maximum signature file size property, jdk.jar.maxSignatureFileSize, was introduced in the 8u382 release of OpenJDK by JDK-8300596, with a default of 8 MB. This default proved to be too small for some JAR files. This release, 8u392, increases it to 16 MB. (RHEL-13593)

Related CVEs

CVE-2022-40433

CVE-2023-22081

CVE-2023-22067

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	50b60590ea0430bc9333574bcc2c9e3bcb6069913f9495ce794104eede30f338	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	50b60590ea0430bc9333574bcc2c9e3bcb6069913f9495ce794104eede30f338	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	0cacde899b8ba2733d153cb6270b61eeb902f7d3cfc6f7cad7e5d8ad2bfbdd01	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-demo-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	c0fd3000a1dbc7f271ac3ce7128d2d536bfe9af5d65c1e7291b8d147a140a111	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-demo-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	34d7caf1143bcc11149e50365d3a20d173c0e898a85d12506dbae80e574d78fa	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-demo-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	e5678a8f2b9f5f3fac9ea16f7522dd0f8d0a35ba14f4f82e018666348e6511be	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-devel-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	666e559f3dd889a7f171a0054ab92486caed17aa65ca5158145a689bb066dcc4	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-devel-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	e56e428152260bb9418a5f3c12decf8b06fee9190e69ddc87f1a393d5cb358b5	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-devel-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	9e4c1d12c3600fe49e0b9ee3c4875cf31394ce901bc8b3585187ba1d0c262be3	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	d1545300e66ebf861894baa550c121cde1837950183d98123bb86ef6563c478f	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-headless-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	7bdfee9c90a4d3be9abc3cc17679d5d8321d77c71149e740f7eda92f77d8e7b1	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-headless-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	92cb87d16854001acf81f37131a8ef6e67a30728837bf382ea3f2054de78d8ef	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-headless-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	f48a8a3db9fec086779c7b698f7bdb7459b688dde2f8dfa37c59a8c01ee66235	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-javadoc-1.8.0.392.b08-3.0.1.el9.noarch.rpm	56e09e010204d9b433aaaf73f9cb8e5b7fa7b691c9dbd3935b85d2fdf523909d	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-javadoc-zip-1.8.0.392.b08-3.0.1.el9.noarch.rpm	a3340b637180ed0b247a3557832d6ca2d8a76fe78bc0c2e369141436a14b2132	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	52941049a134516f0d70db7cdde8cae0dbbc4bd5983901bf3c15dd92397e443a	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-src-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	dcd49e02af6037f75bcda56ab8ff6c8f4286570131a21d9b74829d811b81c285	-	ol9_aarch64_appstream
	java-1.8.0-openjdk-src-fastdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	d70979b349fce79b3b5cd2a54e080d0d674653120ea9eb6209037fca31feee49	-	ol9_aarch64_codeready_builder
	java-1.8.0-openjdk-src-slowdebug-1.8.0.392.b08-3.0.1.el9.aarch64.rpm	5259ec8fe87aa29787894ad9660d8cc2e8fff975f6b8d7b9b912c69c0dc5d2be	-	ol9_aarch64_codeready_builder

Oracle Linux 9 (x86_64)	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	50b60590ea0430bc9333574bcc2c9e3bcb6069913f9495ce794104eede30f338	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.src.rpm	50b60590ea0430bc9333574bcc2c9e3bcb6069913f9495ce794104eede30f338	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	07cf22eb812977459cec7e8fcf6afacc6c3ecdd1288c997bae6ccf3dbd2c7629	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-demo-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	7cc0974c0e1e61940e73a5e0701121b5abc868d34f10e4c65c4c79ff5964d8b0	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-demo-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	a5bc87e584039b2cb69adb4b5606bf67b4c3726e9719417c0f2229ecbdf86342	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-demo-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	2d05d40a399613649d573030cc4a4d9ce5e53bd991b7092418846b1cbf6dbb5a	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-devel-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	039ac3fbe67eae74fa7a9ca90307e83792961b3daae85075ab9316bae9db2a3d	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-devel-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	7dd12e6d18e6ade2ab830033a02f4630a75d17db57655dfe30b8c71b66b4f3e6	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-devel-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	d5e48c0a4dc0c36cdcf0be5ba885d2c50f4b1ad4c5149d1cf6442568d4250b93	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	86f0f068409148b59def90233a1f647da5f7f2e4c0af370f64dd444c30085df5	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-headless-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	c02382d5aec9f1de43853b32ace970fc69bcd0e312330e0158ce7d7db48c6660	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-headless-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	527b5dbb2fdcb67dcdf9dba2f4c1840ed5c9ee25fb65904ee2a23f86f0ee40fb	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-headless-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	be36eed4b73d7398adc0c35a5e1f24e55d0c3d1c4a203d8147ac90d3902c1b9e	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-javadoc-1.8.0.392.b08-3.0.1.el9.noarch.rpm	56e09e010204d9b433aaaf73f9cb8e5b7fa7b691c9dbd3935b85d2fdf523909d	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-javadoc-zip-1.8.0.392.b08-3.0.1.el9.noarch.rpm	a3340b637180ed0b247a3557832d6ca2d8a76fe78bc0c2e369141436a14b2132	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	9bb44bff468f0b72c85a792f9486bcfe105a27af23bafd16cf0113e704d09e15	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-src-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	1bf68cbda558748f4152bc8b83d3d8b828a9a33205a01bcab32fc3aad00f3393	-	ol9_x86_64_appstream
	java-1.8.0-openjdk-src-fastdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	433d8a5c72cb54278b6430ce82d6d9ecf47e2894b0cbb8dc7c630bcc18110081	-	ol9_x86_64_codeready_builder
	java-1.8.0-openjdk-src-slowdebug-1.8.0.392.b08-3.0.1.el9.x86_64.rpm	adb7cffc97d40afa6f0a8414e27006156623517824e0a716ee3eb38646b9e9d2	-	ol9_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691