SUSE-SU-2024:0726-1: important: Security update for Java

SLE-SECURITY-UPDATES null at suse.de
Thu Feb 29 12:30:06 UTC 2024



# Security update for Java

Announcement ID: SUSE-SU-2024:0726-1  
Rating: important  
References:

  * bsc#1220068
  * bsc#1220070

  
Cross-References:

  * CVE-2024-25710
  * CVE-2024-26308

  
CVSS scores:

  * CVE-2024-25710 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2024-25710 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
  * CVE-2024-26308 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2024-26308 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

  
Affected Products:

  * Basesystem Module 15-SP5
  * Development Tools Module 15-SP5
  * openSUSE Leap 15.5
  * SUSE Enterprise Storage 7.1
  * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
  * SUSE Linux Enterprise Desktop 15 SP5
  * SUSE Linux Enterprise High Performance Computing 15 SP2
  * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
  * SUSE Linux Enterprise High Performance Computing 15 SP3
  * SUSE Linux Enterprise High Performance Computing 15 SP4
  * SUSE Linux Enterprise High Performance Computing 15 SP5
  * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
  * SUSE Linux Enterprise Micro 5.5
  * SUSE Linux Enterprise Real Time 15 SP5
  * SUSE Linux Enterprise Server 15 SP2
  * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
  * SUSE Linux Enterprise Server 15 SP3
  * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
  * SUSE Linux Enterprise Server 15 SP4
  * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
  * SUSE Linux Enterprise Server 15 SP5
  * SUSE Linux Enterprise Server for SAP Applications 15 SP2
  * SUSE Linux Enterprise Server for SAP Applications 15 SP3
  * SUSE Linux Enterprise Server for SAP Applications 15 SP4
  * SUSE Linux Enterprise Server for SAP Applications 15 SP5
  * SUSE Manager Proxy 4.3
  * SUSE Manager Retail Branch Server 4.3
  * SUSE Manager Server 4.3
  * SUSE Manager Server 4.3 Module 4.3
  * SUSE Package Hub 15 15-SP5

  
  
An update that solves two vulnerabilities can now be installed.

## Description:

This update for Java fixes the following issues:

apache-commons-codec was updated to version 1.16.1:

  * Changes in version 1.16.1:

  * New features:

    * Added Maven property project.build.outputTimestamp for build reproducibility
  * Bugs fixed:

    * Correct error in Base64 Javadoc
    * Added minimum Java version in changes.xml
    * Documentation update for the org.apache.commons.codec.digest.* package
    * Precompile regular expression in UnixCrypt.crypt(byte[], String)
    * Fixed possible IndexOutOfBoundException in PhoneticEngine.encode method
    * Fixed possible ArrayIndexOutOfBoundsException in QuotedPrintableCodec.encodeQuotedPrintable() method
    * Fixed possible StringIndexOutOfBoundException in MatchRatingApproachEncoder.encode() method
    * Fixed possible ArrayIndexOutOfBoundException in RefinedSoundex.getMappingCode()
    * Fixed possible IndexOutOfBoundsException in PercentCodec.insertAlwaysEncodeChars() method
    * Deprecated UnixCrypt 0-argument constructor
    * Deprecated Md5Crypt 0-argument constructor
    * Deprecated Crypt 0-argument constructor
    * Deprecated StringUtils 0-argument constructor
    * Deprecated Resources 0-argument constructor
    * Deprecated Charsets 0-argument constructor
    * Deprecated CharEncoding 0-argument constructor
  * Changes in version 1.16.0:

  * Remove duplicated words from Javadocs

  * Use Standard Charset object
  * Use String.contains() functions
  * Avoid use toString() or substring() in favor of a simplified expression
  * Fixed byte-skipping in Base16 decoding
  * Fixed several typos, improve writing in some javadocs
  * BaseNCodecOutputStream.eof() should not throw IOException.
  * Javadoc improvements and cleanups.
  * Deprecated BaseNCodec.isWhiteSpace(byte) and use
    Character.isWhitespace(int).
  * Added support for Blake3 family of hashes
  * Added github/codeql-action
  * Bump actions/cache from v2 to v3.0.10
  * Bump actions/setup-java from v1.4.1 to 3.5.1
  * Bump actions/checkout from 2.3.2 to 3.1.0
  * Bump commons-parent from 52 to 58
  * Bump junit from 4.13.1 to 5.9.1
  * Bump Java 7 to 8.
  * Bump japicmp-maven-plugin from 0.14.3 to 0.17.1.
  * Bump jacoco-maven-plugin from 0.8.5 to 0.8.8 (Fixes Java 15 builds).
  * Bump maven-surefire-plugin from 2.22.2 to 3.0.0-M7
  * Bump maven-javadoc-plugin from 3.2.0 to 3.4.1.
  * Bump animal-sniffer-maven-plugin from 1.19 to 1.22.
  * Bump maven-pmd-plugin from 3.13.0 to 3.19.0
  * Bump pmd from 6.47.0 to 6.52.0.
  * Bump maven-checkstyle-plugin from 2.17 to 3.2.0
  * Bump checkstyle from 8.45.1 to 9.3
  * Bump taglist-maven-plugin from 2.4 to 3.0.0
  * Bump jacoco-maven-plugin from 0.8.7 to 0.8.8.

apache-commons-compress was updated to version 1.26:

  * Changes in version 1.26:

  * Security issues fixed:

    * CVE-2024-26308: Fixed allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress (bsc#1220068)
    * CVE-2024-25710: Fixed loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache Commons Compress (bsc#1220070)
  * New Features:

    * Added and use ZipFile.builder(), ZipFile.Builder, and deprecate constructors
    * Added and use SevenZFile.builder(), SevenZFile.Builder, and deprecate constructors
    * Added and use ArchiveInputStream.getCharset()
    * Added and use ArchiveEntry.resolveIn(Path)
    * Added Maven property project.build.outputTimestamp for build reproducibility
  * Bugs fixed:

    * Check for invalid PAX values in TarArchiveEntry
    * Fixed zero size headers in ArjInputStream
    * Fixes and tests for ArInputStream
    * Fixes for dump file parsing
    * Improved CPIO exception detection and handling
    * Deprecated SkipShieldingInputStream without replacement (nolonger used)
    * Reuse commons-codec, don't duplicate class PureJavaCrc32C (removed package-private class)
    * Reuse commons-codec, don't duplicate class XXHash32 (deprecated class)
    * Reuse commons-io, don't duplicate class Charsets (deprecated class)
    * Reuse commons-io, don't duplicate class IOUtils (deprecated methods)
    * Reuse commons-io, don't duplicate class BoundedInputStream (deprecated class)
    * Reuse commons-io, don't duplicate class FileTimes (deprecated TimeUtils methods)
    * Reuse Arrays.equals(byte[], byte[]) and deprecate ArchiveUtils.isEqual(byte[], byte[])
    * Added a null-check for the class loader of OsgiUtils
    * Added a null-check in Pack200.newInstance(String, String)
    * Deprecated ChecksumCalculatingInputStream in favor of java.util.zip.CheckedInputStream
    * Deprecated CRC32VerifyingInputStream.CRC32VerifyingInputStream(InputStream, long, int)
    * FramedSnappyCompressorOutputStream produces incorrect output when writing a large buffer
    * Fixed TAR directory entries being misinterpreted as files
    * Deprecated unused method FileNameUtils.getBaseName(String)
    * Deprecated unused method FileNameUtils.getExtension(String)
    * ArchiveInputStream.BoundedInputStream.read() incorrectly adds 1 for EOF to the bytes read count
    * Deprecated IOUtils.read(File, byte[])
    * Deprecated IOUtils.copyRange(InputStream, long, OutputStream, int)
    * ZipArchiveOutputStream multi archive updates metadata in incorrect file
    * Deprecated ByteUtils.InputStreamByteSupplier
    * Deprecated ByteUtils.fromLittleEndian(InputStream, int)
    * Deprecated ByteUtils.toLittleEndian(DataOutput, long, int)
    * Reduce duplication by having ArchiveInputStream extend FilterInputStream
    * Support preamble garbage in ZipArchiveInputStream
    * Fixed formatting the lowest expressable DOS time
    * Dropped reflection from ExtraFieldUtils static initialization
    * Preserve exception causation in ExtraFieldUtils.register(Class)
  * Changes in version 1.25:

  * For the full list of changes please consult:
    https://commons.apache.org/proper/commons-compress/changes-
    report.html#a1.25.0

  * Changes in version 1.24:

  * For the full list of changes please consult:
    https://commons.apache.org/proper/commons-compress/changes-
    report.html#a1.24.0

  * Changes in version 1.23:

  * For the full list of changes please consult:
    https://commons.apache.org/proper/commons-compress/changes-
    report.html#a1.23.0

  * Changes in version 1.22:

  * For the full list of changes please consult:
    https://commons.apache.org/proper/commons-compress/changes-report.html#a1.22

apache-commons-io was updated to version 2.15.1:

  * Changes in version 2.15.1:

  * For the full list of changes please consult:
    https://commons.apache.org/proper/commons-io/changes-report.html#a2.15.1

  * Changes in version 2.15.0:

  * For the full list of changes please consult:
    https://commons.apache.org/proper/commons-io/changes-report.html#a2.15.0

  * Changes in version 2.14.0:

  * For the full list of changes please consult:
    https://commons.apache.org/proper/commons-io/changes-report.html#a2.14.0

javapackages-meta:

  * Syncing the version with javapackages-tools 6.2.0
  * Remove unnecessary dependencies

maven was updated to version 3.9.6:

  * Changes in version 3.9.6:

  * Bugs fixed:

    * Error message when modelVersion is 4.0 is confusing
  * Improvements:

    * Colorize transfer messages
    * Support ${project.basedir} in file profile activation
    * Allow to exclude plugins from validation
  * Tasks:

    * Maven Resolver Provider classes ctor change
    * Undeprecate wrongly deprecated repository metadata
    * Deprecated `org.apache.maven.repository.internal.MavenResolverModule`
    * maven-resolver-provider: introduce NAME constants.
  * Dependency upgrade:

    * Updated to Resolver 1.9.16
    * Upgraded Sisu version to 0.9.0.M2
    * Upgraded Resolver version to 1.9.18
    * Upgraded to parent POM 41
    * Upgraded default plugin bindings

maven-assembly-plugin:

  * Explicitely require commons-io:commons-io and commons-codec:common-codes
    artifacts that are optional in apache-commons-compress

maven-doxia was updated to version 1.12.0:

  * Changes in version 1.12.0:

    * Upgraded to FOP 2.2
    * Fixed rendering links and paragraphs inside tables
    * Rewrite .md and .markdown links to .html
    * Upgraded HttpComponents: httpclient to 4.5.8 and httpcore to 4.4.11
    * Escape links to xml based figureGraphics image elements
    * SECURITY: Use HTTPS to resolve dependencies in Maven Build
    * Removed old Maven 1 and 2 info
    * Updated commons-lang to 3.8.1
    * Dropped dependency to outdated Log4j
    * Fixed Java 7 compatibility that was broken
    * Import tests from maven-site-plugin
    * Fixed crosslinks starting with a dot in markdown files
    * Replace deprecated class from commons-lang
    * Fill in some generic types

maven-doxia-sitetools was updated to version 1.11.1:

  * Changes in version 1.11.1:

  * Bugs fixed:

    * CLIRR can't find previous version
  * Improvements:

    * Removed all   in default-site-macros.vm and replace by a space
    * Improved documentation on site.xml inheritance vs interpolation
  * Tasks:

    * Deprecated Doxia Sitetools Doc Renderer
  * Dependency upgrade:

    * Fixed javadoc issues with JDK 8 when generating documentation
    * Wrong coordinates for jai_core: hyphen should be underscore
    * Use latest JUnit version 4.13.2
    * Upgraded Plexus Utils to 3.3.0
    * Upgraded Plexus Interpolation to 1.26
    * Upgraded Maven Doxia to 1.10
    * Upgraded Maven Doxia to 1.11.1

maven-jar-plugin was updated to version 3.3.0:

  * Changes in version 3.3.0:

  * Bugs fixed:

    * outputTimestamp not applied to module-info; breaks reproducible builds
  * Task:

    * Updated plugin (requires Maven 3.2.5+)
    * Java 8 as minimum
  * Dependency upgrade:

    * Upgraded Plexus Utils to 3.3.1
    * Removed override for Plexus Archiver to fix order of META-INF/ and META-INF/MANIFEST.MF entries
    * Upgraded Parent to 36
    * Updated Plexus Utils to 3.4.2
    * Upgraded Parent to 37

maven-jar-plugin was updated to version 3.6.0:

  * Changes from version 3.6.0:

  * Bugs fixed:

    * Setting maven.javadoc.isoffline seems to have no effect
    * javadoc site is broken for projects that contain modules
    * Alternative doclet page points to an SEO spammy page
    * [REGRESSION] Transitive dependencies of docletArtifact missing
    * Unresolvable link in javadoc tag with value ResourcesBundleMojo#getAttachmentClassifier() found in ResourcesBundleMojo
    * IOException --> NullPointerException in JavadocUtil.copyResource
    * JavadocReportTest.testExceptions is broken
    * javadoc creates invalid --patch-module statements
    * javadoc plugin can not deal with transitive filename based modules
  * Improvements:

    * Clean up deprecated and unpreferred methods in JavadocUtil
    * Cleanup dependency declarations as best possible
    * Allow building javadoc "the old fashioned way" after Java 8
  * Tasks:

    * Dropped use of deprecated localRepository mojo parameter
    * Make build pass with Java 20
    * Refresh download page
  * Dependency upgrade:

    * Updated to commons-io 2.13.0
    * Updated plexus-archiver from 4.7.1 to 4.8.0
    * Upgraded Parent to 40
  * Changes from version 3.5.0:

  * Bugs fixed:

    * Invalid anchors in Javadoc and plugin mojo
    * Plugin duplicates classes in Java 8 all-classes lists
    * javadoc site creation ignores configuration parameters
  * Improvements:

    * Deprecated parameter "stylesheet"
    * Parse stderr output and suppress informational lines
    * Link to Javadoc references from JDK 17
    * Migrate components to JSR 330, get rid of maven-artifact-transfer, update to parent 37
  * Tasks:

    * Removed remains of org.codehaus.doxia.sink.Sink
  * Dependency upgrades:

    * Upgraded plugins in ITs
    * Upgraded to Maven 3.2.5
    * Updated Maven Archiver to 3.6.0
    * Upgraded Maven Reporting API to 3.1.1/Complete with Maven Reporting Impl 3.2.0
    * Upgraded commons-text to 1.10.0
    * Upgraded Parent to 39
    * Upgraded plugins and components

maven-reporting-api was updated to version 3.1.1:

  * Restore binary compat for MavenReport

maven-reporting-impl was updated to version 3.2.0:

  * Changes in version 3.2.0:

  * Improvement:

    * Render with a skin when report is run in standalone mode
  * Dependency upgrades:

    * Upgraded Maven Reporting API to 3.1.1
    * Upgraded plugins and components in project and ITs

maven-resolver was updated to version 1.9.18:

  * Changes in version 1.9.18:

  * Bugs fixed:

    * Sporadic AccessDeniedEx on Windows
    * Undo FileUtils changes that altered non-Windows execution path
  * Improvements:

    * Native transport should retry on HTTP 429 (Retry-After)
  * Task:

    * Deprecated Guice modules
    * Get rid of component name string literals, make them constants and reusable
    * Expose configuration for inhibiting Expect-Continue handshake in 1.x
    * Refresh download page
    * Resolver should not override given HTTP transport default use of expect-continue handshake

maven-resources-plugin was updated to version 3.3.1:

  * Changes in version 3.3.1:

  * Bugs fixed:

    * Resource plugin's handling of symbolic links changed in 3.0.x, broke existing behavior
    * Resource copying not using specified encoding
    * java.nio.charset.MalformedInputException: Input length = 1
    * Filtering of Maven properties with long names is not working after transition from 2.6 to 3.2.0
    * Valid location for directory parameter is always required
    * Symlinks cause copying resources to fail
    * FileUtils.copyFile() fails with source file having `lastModified = 0`
  * New Features:

    * Added ability to flatten folder structure into target directory when copying resources
  * Improvements:

    * Make tests jar reproducible
    * Describe from and to in "Copying xresources" info message
  * Task:

    * Dropped plexus legacy
    * Updated to parent POM 39, reformat sources
    * Updated plugin (requires Maven 3.2.5+)
    * Require Java 8
  * Dependency upgrade:

    * Upgraded maven-plugin parent to 36
    * Upgraded Maven Filtering to 3.3.0
    * Upgraded plexus-utils to 3.5.1
    * Upgraded to maven-filtering 3.3.1

sbt:

  * Fixed RPM package build with maven 3.9.6 and maven-resolver 1.9.18

xmvn:

  * Modify the xmvn-install script to work with new apache-commons-compress
  * Recompiling RPM package to resolve package building issues with maven-lib

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Manager Server 4.3 Module 4.3  
    zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.3-2024-726=1

  * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-726=1

  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-726=1

  * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-726=1

  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-726=1

  * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4  
    zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-726=1

  * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2  
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-726=1

  * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3  
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-726=1

  * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4  
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-726=1

  * SUSE Linux Enterprise Server for SAP Applications 15 SP2  
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-726=1

  * SUSE Linux Enterprise Server for SAP Applications 15 SP3  
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-726=1

  * SUSE Linux Enterprise Server for SAP Applications 15 SP4  
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-726=1

  * SUSE Manager Proxy 4.3  
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-726=1

  * SUSE Manager Retail Branch Server 4.3  
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-726=1

  * SUSE Manager Server 4.3  
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-726=1

  * SUSE Enterprise Storage 7.1  
    zypper in -t patch SUSE-Storage-7.1-2024-726=1

  * openSUSE Leap 15.5  
    zypper in -t patch openSUSE-SLE-15.5-2024-726=1

  * Basesystem Module 15-SP5  
    zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-726=1

  * Development Tools Module 15-SP5  
    zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-726=1

  * SUSE Package Hub 15 15-SP5  
    zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-726=1

## Package List:

  * SUSE Manager Server 4.3 Module 4.3 (noarch)
    * apache-commons-compress-1.26.0-150200.3.16.1
    * apache-commons-codec-1.16.1-150200.3.9.1
  * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64
    x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
    x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
    x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
    x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x
    x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
    x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
    x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Manager Proxy 4.3 (noarch)
    * apache-commons-codec-1.16.1-150200.3.9.1
    * apache-commons-io-2.15.1-150200.3.12.1
  * SUSE Manager Retail Branch Server 4.3 (noarch)
    * apache-commons-codec-1.16.1-150200.3.9.1
    * apache-commons-io-2.15.1-150200.3.12.1
  * SUSE Manager Server 4.3 (noarch)
    * apache-commons-codec-1.16.1-150200.3.9.1
    * apache-commons-io-2.15.1-150200.3.12.1
  * SUSE Enterprise Storage 7.1 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * SUSE Enterprise Storage 7.1 (aarch64 x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * openSUSE Leap 15.5 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * apache-commons-io-2.15.1-150200.3.12.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-bootstrap-3.6.0-150200.4.10.1
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-javadoc-3.9.6-150200.4.21.2
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-javadoc-1.12.0-150200.4.7.2
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * xmvn-mojo-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * xmvn-mojo-javadoc-4.2.0-150200.3.18.1
    * xmvn-tools-javadoc-4.2.0-150200.3.18.1
    * maven-jar-plugin-bootstrap-3.3.0-150200.3.10.1
    * maven-resolver-javadoc-1.9.18-150200.3.17.2
    * xmvn-connector-javadoc-4.2.0-150200.3.18.1
    * maven-resolver-transport-classpath-1.9.18-150200.3.17.2
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-assembly-plugin-3.6.0-150200.3.10.1
    * apache-commons-configuration2-javadoc-2.9.0-150200.5.5.1
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-resolver-1.9.18-150200.3.17.2
    * apache-commons-io-javadoc-2.15.1-150200.3.12.1
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-test-docs-1.12.0-150200.4.7.2
    * maven-doxia-module-docbook-simple-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-doxia-module-rtf-1.12.0-150200.4.7.2
    * maven-doxia-module-twiki-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * maven-doxia-module-latex-1.12.0-150200.4.7.2
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-javadoc-plugin-javadoc-3.6.0-150200.4.10.1
    * maven-reporting-impl-javadoc-3.2.0-150200.4.6.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * maven-resolver-test-util-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * maven-assembly-plugin-javadoc-3.6.0-150200.3.10.1
    * maven-jar-plugin-javadoc-3.3.0-150200.3.10.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-doxia-module-confluence-1.12.0-150200.4.7.2
    * apache-commons-compress-javadoc-1.26.0-150200.3.16.1
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resources-plugin-bootstrap-3.3.1-150200.3.12.1
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * maven-reporting-api-javadoc-3.1.1-150200.3.7.1
    * maven-resources-plugin-javadoc-3.3.1-150200.3.12.1
    * sbt-bootstrap-0.13.18-150200.4.19.7
    * xmvn-parent-4.2.0-150200.3.18.1
    * apache-commons-codec-javadoc-1.16.1-150200.3.9.1
    * maven-reporting-impl-3.2.0-150200.4.6.2
    * maven-doxia-sitetools-javadoc-1.11.1-150200.3.7.1
    * apache-commons-codec-1.16.1-150200.3.9.1
    * xmvn-install-4.2.0-150200.3.18.1
    * sbt-0.13.18-150200.4.19.7
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * Basesystem Module 15-SP5 (noarch)
    * apache-commons-codec-1.16.1-150200.3.9.1
    * apache-commons-io-2.15.1-150200.3.12.1
  * Development Tools Module 15-SP5 (noarch)
    * maven-doxia-sitetools-1.11.1-150200.3.7.1
    * maven-doxia-module-xdoc-1.12.0-150200.4.7.2
    * xmvn-connector-4.2.0-150200.3.18.1
    * maven-resolver-util-1.9.18-150200.3.17.2
    * xmvn-resolve-4.2.0-150200.3.18.1
    * maven-resolver-spi-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml-1.12.0-150200.4.7.2
    * maven-resources-plugin-3.3.1-150200.3.12.1
    * maven-doxia-module-fo-1.12.0-150200.4.7.2
    * xmvn-mojo-4.2.0-150200.3.18.1
    * maven-doxia-logging-api-1.12.0-150200.4.7.2
    * xmvn-api-4.2.0-150200.3.18.1
    * apache-commons-compress-1.26.0-150200.3.16.1
    * maven-resolver-named-locks-1.9.18-150200.3.17.2
    * maven-resolver-api-1.9.18-150200.3.17.2
    * maven-doxia-module-apt-1.12.0-150200.4.7.2
    * maven-doxia-core-1.12.0-150200.4.7.2
    * maven-reporting-api-3.1.1-150200.3.7.1
    * maven-resolver-transport-http-1.9.18-150200.3.17.2
    * maven-javadoc-plugin-3.6.0-150200.4.10.1
    * apache-commons-configuration2-2.9.0-150200.5.5.1
    * maven-doxia-sink-api-1.12.0-150200.4.7.2
    * maven-resolver-connector-basic-1.9.18-150200.3.17.2
    * ivy-local-6.2.0-150200.3.7.1
    * gradle-local-6.2.0-150200.3.7.1
    * maven-resolver-transport-wagon-1.9.18-150200.3.17.2
    * maven-jar-plugin-3.3.0-150200.3.10.1
    * xmvn-core-4.2.0-150200.3.18.1
    * maven-resolver-transport-file-1.9.18-150200.3.17.2
    * maven-resolver-impl-1.9.18-150200.3.17.2
    * maven-doxia-module-xhtml5-1.12.0-150200.4.7.2
    * maven-local-6.2.0-150200.3.7.1
    * xmvn-install-4.2.0-150200.3.18.1
    * maven-doxia-module-fml-1.12.0-150200.4.7.2
    * xmvn-subst-4.2.0-150200.3.18.1
  * Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64)
    * maven-lib-3.9.6-150200.4.21.2
    * maven-3.9.6-150200.4.21.2
    * xmvn-minimal-4.2.0-150200.3.18.1
    * xmvn-4.2.0-150200.3.18.1
  * SUSE Package Hub 15 15-SP5 (noarch)
    * sbt-bootstrap-0.13.18-150200.4.19.7
    * sbt-0.13.18-150200.4.19.7

## References:

  * https://www.suse.com/security/cve/CVE-2024-25710.html
  * https://www.suse.com/security/cve/CVE-2024-26308.html
  * https://bugzilla.suse.com/show_bug.cgi?id=1220068
  * https://bugzilla.suse.com/show_bug.cgi?id=1220070

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20240229/50c8059f/attachment.htm>


More information about the sle-security-updates mailing list