SUSE-SU-2020:14391-1: important: Security update for java-1_7_0-ibm

sle-security-updates at sle-security-updates at
Tue Jun 9 16:14:31 MDT 2020

   SUSE Security Update: Security update for java-1_7_0-ibm

Announcement ID:    SUSE-SU-2020:14391-1
Rating:             important
References:         #1169511 #1172277 
Cross-References:   CVE-2020-2654 CVE-2020-2756 CVE-2020-2757
                    CVE-2020-2781 CVE-2020-2800 CVE-2020-2803
                    CVE-2020-2805 CVE-2020-2830
Affected Products:
                    SUSE Linux Enterprise Point of Sale 11-SP3

   An update that fixes 8 vulnerabilities is now available.


   This update for java-1_7_0-ibm fixes the following issues:

   java-1_7_1-ibm was updated to Java 7.1 Service Refresh 4 Fix Pack 65
   (bsc#1172277 and bsc#1169511)

   - CVE-2020-2654: Fixed an issue which could have resulted in unauthorized
     ability to cause a partial denial of service
   - CVE-2020-2756: Improved mapping of serial ENUMs
   - CVE-2020-2757: Less Blocking Array Queues
   - CVE-2020-2781: Improved TLS session handling
   - CVE-2020-2800: Improved Headings for HTTP Servers
   - CVE-2020-2803: Enhanced buffering of byte buffers
   - CVE-2020-2805: Enhanced typing of methods
   - CVE-2020-2830: Improved Scanner conversions

Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Point of Sale 11-SP3:

      zypper in -t patch sleposp3-java-1_7_0-ibm-14391=1

Package List:

   - SUSE Linux Enterprise Point of Sale 11-SP3 (i586):



More information about the sle-security-updates mailing list