{"id":"CLSA-2024-1724259788","summary":"java-1.8.0-openjdk: Fix of 6 CVEs","details":"- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u422-b05. That fixes following CVEs:\n- CVE-2024-21131: UTF8 size overflow\n- CVE-2024-21138: Infinite loop vunlerability in SymbolTable\n- CVE-2024-21140: Int overflow/underflow in Range Check Elimination (RCE)\n- CVE-2024-21144: Invalid header validation leads to Pack200 excessive loading time\n- CVE-2024-21145: Out-of-bounds access in MaskFill\n- CVE-2024-21147: Out-of-bounds array index in Range Check Elimination (RCE)","modified":"2026-05-29T01:18:42.320983769Z","published":"2024-08-21T17:03:12Z","upstream":["CVE-2024-21131","CVE-2024-21138","CVE-2024-21140","CVE-2024-21144","CVE-2024-21145","CVE-2024-21147"],"references":[{"type":"ADVISORY","url":"https://errata.cloudlinux.com/centos8.5-els/CLSA-2024-1724259788.html"}],"schema_version":"1.7.5"}