{"id":"CLSA-2024-1706696494","summary":"java-1.8.0-openjdk: Fix of 8 CVEs","details":"- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u402-b06. That fixes following CVEs:\n- CVE-2024-20918: Array out-of-bounds access due to missing range check in C1 compiler\n- CVE-2024-20919: JVM class file verifier flaw allows unverified bytecode execution\n- CVE-2024-20921: Range check loop optimization issue\n- CVE-2024-20926: Arbitrary Java code execution in Nashorn\n- CVE-2024-20945: Logging of digital signature private keys\n- CVE-2024-20952: RSA padding issue and timing side-channel attack against TLS\n- CVE-2023-22067: IOR deserialization issue in CORBA (fixed in jdk8u392)\n- CVE-2023-22081: Certificate path validation issue during client authentication (fixed in jdk8u392)\n- Adapt pr2462 patch to the new sources","modified":"2026-06-01T00:32:26.371499178Z","published":"2024-01-31T10:21:37Z","upstream":["CVE-2024-20918","CVE-2024-20919","CVE-2024-20921","CVE-2024-20926","CVE-2024-20945","CVE-2024-20952","CVE-2023-22067","CVE-2023-22081"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.4-els/CLSA-2024-1706696494.html"}],"affected":[{"package":{"name":"java-1.8.0-openjdk","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-accessibility","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-accessibility?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-accessibility-fastdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-accessibility-fastdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-accessibility-slowdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-accessibility-slowdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-demo","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-demo?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-demo-fastdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-demo-fastdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-demo-slowdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-demo-slowdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-devel","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-devel?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-devel-fastdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-devel-fastdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-devel-slowdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-devel-slowdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-fastdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-fastdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-headless","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-headless?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-headless-fastdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-headless-fastdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-headless-slowdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-headless-slowdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-javadoc","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-javadoc?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-javadoc-zip","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-javadoc-zip?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-slowdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-slowdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-src","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-src?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-src-fastdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-src-fastdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}},{"package":{"name":"java-1.8.0-openjdk-src-slowdebug","ecosystem":"TuxCare:CentOS:8.4","purl":"pkg:rpm/tuxcare/java-1.8.0-openjdk-src-slowdebug?distro=centos-8.4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.8.0.402.b06-1.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1706696494.json"}}],"schema_version":"1.7.5"}