<div class="container">
<h1>Security update for java-17-openjdk</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2024:3963-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2024-11-09T16:39:43Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231702">bsc#1231702</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231711">bsc#1231711</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231716">bsc#1231716</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231719">bsc#1231719</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>
Cross-References:
</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-21208.html">CVE-2024-21208</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-21210.html">CVE-2024-21210</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-21217.html">CVE-2024-21217</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-21235.html">CVE-2024-21235</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>CVSS scores:</th>
<td>
<ul class="list-group">
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21208</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.3</span>
<span class="cvss-vector">CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21208</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">3.7</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21208</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">3.7</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21210</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.3</span>
<span class="cvss-vector">CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21210</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">3.7</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21210</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">3.7</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21217</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.3</span>
<span class="cvss-vector">CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21217</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">3.7</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21217</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">3.7</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21235</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.3</span>
<span class="cvss-vector">CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21235</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">4.8</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-21235</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.8</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N</span>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">Basesystem Module 15-SP5</li>
<li class="list-group-item">Basesystem Module 15-SP6</li>
<li class="list-group-item">Legacy Module 15-SP6</li>
<li class="list-group-item">openSUSE Leap 15.4</li>
<li class="list-group-item">openSUSE Leap 15.5</li>
<li class="list-group-item">openSUSE Leap 15.6</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP6</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing LTSS 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 15 SP6</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP6</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP6</li>
<li class="list-group-item">SUSE Manager Proxy 4.3</li>
<li class="list-group-item">SUSE Manager Retail Branch Server 4.3</li>
<li class="list-group-item">SUSE Manager Server 4.3</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that solves four vulnerabilities can now be installed.</p>
<h2>Description:</h2>
<p>This update for java-17-openjdk fixes the following issues:</p>
<ul>
<li>Update to upstream tag jdk-17.0.13+11 (October 2024 CPU)</li>
<li>Security fixes<ul>
<li>JDK-8307383: Enhance DTLS connections</li>
<li>JDK-8290367, JDK-8332643: Update default value and extend the
scope of com.sun.jndi.ldap.object.trustSerialData system property</li>
<li>JDK-8328286, CVE-2024-21208, bsc#1231702: Enhance HTTP client</li>
<li>JDK-8328544, CVE-2024-21210, bsc#1231711: Improve handling of vectorization</li>
<li>JDK-8328726: Better Kerberos support</li>
<li>JDK-8331446, CVE-2024-21217, bsc#1231716: Improve deserialization support</li>
<li>JDK-8332644, CVE-2024-21235, bsc#1231719: Improve graph optimizations</li>
<li>JDK-8335713: Enhance vectorization analysis</li>
</ul>
</li>
<li>Other changes<ul>
<li>JDK-7022325: TEST_BUG: test/java/util/zip/ZipFile/
/ReadLongZipFileName.java leaks files if it fails</li>
<li>JDK-7026262: HttpServer: improve handling of finished HTTP exchanges</li>
<li>JDK-7124313: [macosx] Swing Popups should overlap taskbar</li>
<li>JDK-8005885: enhance PrintCodeCache to print more data</li>
<li>JDK-8051959: Add thread and timestamp options to
java.security.debug system property</li>
<li>JDK-8170817: G1: Returning MinTLABSize from
unsafe_max_tlab_alloc causes TLAB flapping</li>
<li>JDK-8183227: read/write APIs in class os shall return ssize_t</li>
<li>JDK-8193547: Regression automated test '/open/test/jdk/java/
/awt/Toolkit/DesktopProperties/rfe4758438.java' fails</li>
<li>JDK-8222884: ConcurrentClassDescLookup.java times out intermittently</li>
<li>JDK-8233725: ProcessTools.startProcess() has output issues
when using an OutputAnalyzer at the same time</li>
<li>JDK-8238169: BasicDirectoryModel getDirectories and
DoChangeContents.run can deadlock</li>
<li>JDK-8241550: [macOS] SSLSocketImpl/ReuseAddr.java failed due
to "BindException: Address already in use"</li>
<li>JDK-8255898: Test java/awt/FileDialog/FilenameFilterTest/
/FilenameFilterTest.java fails on Mac OS</li>
<li>JDK-8256291: RunThese30M fails "assert(_class_unload ? true :
((((JfrTraceIdBits::load(class_loader_klass)) &
((1 << 4) << 8)) != 0))) failed: invariant"</li>
<li>JDK-8257540: javax/swing/JFileChooser/8041694/bug8041694.java
failed with "RuntimeException: The selected directory name is
not the expected 'd ' but 'D '."</li>
<li>JDK-8259866: two java.util tests failed with "IOException:
There is not enough space on the disk"</li>
<li>JDK-8260633: [macos] java/awt/dnd/MouseEventAfterStartDragTest/
/MouseEventAfterStartDragTest.html test failed</li>
<li>JDK-8261433: Better pkcs11 performance for
libpkcs11:C_EncryptInit/libpkcs11:C_DecryptInit</li>
<li>JDK-8263031: HttpClient throws Exception if it receives a
Push Promise that is too large</li>
<li>JDK-8265919: RunThese30M fails
"assert((!(((((JfrTraceIdBits::load(value)) & ((1 << 4) << 8))
!= 0))))) failed: invariant"</li>
<li>JDK-8269428: java/util/concurrent/ConcurrentHashMap/
/ToArray.java timed out</li>
<li>JDK-8269657: Test java/nio/channels/DatagramChannel/
/Loopback.java failed: Unexpected message</li>
<li>JDK-8272232: javax/swing/JTable/4275046/bug4275046.java
failed with "Expected value in the cell: 'rededited' but found
'redEDITED'."</li>
<li>JDK-8272558: IR Test Framework README misses some flags</li>
<li>JDK-8272777: Clean up remaining AccessController warnings in test library</li>
<li>JDK-8273216: JCMD does not work across container boundaries with Podman</li>
<li>JDK-8273430: Suspicious duplicate condition in
java.util.regex.Grapheme#isExcludedSpacingMark</li>
<li>JDK-8273541: Cleaner Thread creates with normal priority
instead of MAX_PRIORITY - 2</li>
<li>JDK-8275851: Deproblemlist open/test/jdk/javax/swing/
/JComponent/6683775/bug6683775.java</li>
<li>JDK-8276660: Scalability bottleneck in
java.security.Provider.getService()</li>
<li>JDK-8277042: add test for 8276036 to compiler/codecache</li>
<li>JDK-8279068: IGV: Update to work with JDK 16 and 17</li>
<li>JDK-8279164: Disable TLS_ECDH_* cipher suites</li>
<li>JDK-8279222: Incorrect legacyMap.get in
java.security.Provider after JDK-8276660</li>
<li>JDK-8279337: The MToolkit is still referenced in a few places</li>
<li>JDK-8279641: Create manual JTReg tests for Swing accessibility</li>
<li>JDK-8279878: java/awt/font/JNICheck/JNICheck.sh test fails on Ubuntu 21.10</li>
<li>JDK-8280034: ProblemList jdk/jfr/api/consumer/recordingstream/
/TestOnEvent.java on linux-x64</li>
<li>JDK-8280392: java/awt/Focus/NonFocusableWindowTest/
/NonfocusableOwnerTest.java failed with "RuntimeException: Test failed."</li>
<li>JDK-8280970: Cleanup dead code in java.security.Provider</li>
<li>JDK-8280982: [Wayland] [XWayland] java.awt.Robot taking screenshots</li>
<li>JDK-8280988: [XWayland] Click on title to request focus test failures</li>
<li>JDK-8280990: [XWayland] XTest emulated mouse click does not
bring window to front</li>
<li>JDK-8280993: [XWayland] Popup is not closed on click outside
of area controlled by XWayland</li>
<li>JDK-8280994: [XWayland] Drag and Drop does not work in java
-> wayland app direction</li>
<li>JDK-8281944: JavaDoc throws java.lang.IllegalStateException: ERRONEOUS</li>
<li>JDK-8282354: Remove dependancy of TestHttpServer,
HttpTransaction, HttpCallback from open/test/jdk/ tests</li>
<li>JDK-8282526: Default icon is not painted properly</li>
<li>JDK-8283728: jdk.hotspot.agent: Wrong location for
RISCV64ThreadContext.java</li>
<li>JDK-8284316: Support accessibility ManualTestFrame.java for
non SwingSet tests</li>
<li>JDK-8284585: PushPromiseContinuation test fails
intermittently in timeout</li>
<li>JDK-8285497: Add system property for Java SE specification
maintenance version</li>
<li>JDK-8288568: Reduce runtime of java.security microbenchmarks</li>
<li>JDK-8289182: NMT: MemTracker::baseline should return void</li>
<li>JDK-8290966: G1: Record number of PLAB filled and number of
direct allocations</li>
<li>JDK-8291760: PipelineLeaksFD.java still fails: More or fewer
pipes than expected</li>
<li>JDK-8292044: HttpClient doesn't handle 102 or 103 properly</li>
<li>JDK-8292739: Invalid legacy entries may be returned by
Provider.getServices() call</li>
<li>JDK-8292948: JEditorPane ignores font-size styles in external
linked css-file</li>
<li>JDK-8293862: javax/swing/JFileChooser/8046391/bug8046391.java
failed with 'Cannot invoke
"java.awt.Image.getWidth(java.awt.image.ImageObserver)"
because "retVal" is null'</li>
<li>JDK-8293872: Make runtime/Thread/ThreadCountLimit.java more robust</li>
<li>JDK-8294148: Support JSplitPane for instructions and test UI</li>
<li>JDK-8294691: dynamicArchive/RelativePath.java is running
other test case</li>
<li>JDK-8294994: Update Jarsigner and Keytool i18n tests to
validate i18n compliance</li>
<li>JDK-8295111: dpkg appears to have problems resolving
symbolically linked native libraries</li>
<li>JDK-8296410: HttpClient throws java.io.IOException: no
statuscode in response for HTTP2</li>
<li>JDK-8296812: sprintf is deprecated in Xcode 14</li>
<li>JDK-8297878: KEM: Implementation</li>
<li>JDK-8298381: Improve handling of session tickets for multiple SSLContexts</li>
<li>JDK-8298596: vmTestbase/nsk/sysdict/vm/stress/chain/chain008/
/chain008.java fails with "NoClassDefFoundError: Could not
initialize class java.util.concurrent.ThreadLocalRandom"</li>
<li>JDK-8298809: Clean up vm/compiler/InterfaceCalls JMH</li>
<li>JDK-8299058: AssertionError in sun.net.httpserver.ServerImpl
when connection is idle</li>
<li>JDK-8299254: Support dealing with standard assert macro</li>
<li>JDK-8299378: sprintf is deprecated in Xcode 14</li>
<li>JDK-8299395: Remove metaprogramming/removeCV.hpp</li>
<li>JDK-8299396: Remove metaprogramming/removeExtent.hpp</li>
<li>JDK-8299397: Remove metaprogramming/isFloatingPoint.hpp</li>
<li>JDK-8299398: Remove metaprogramming/isConst.hpp</li>
<li>JDK-8299399: Remove metaprogramming/isArray.hpp</li>
<li>JDK-8299402: Remove metaprogramming/isVolatile.hpp</li>
<li>JDK-8299479: Remove metaprogramming/decay.hpp</li>
<li>JDK-8299481: Remove metaprogramming/removePointer.hpp</li>
<li>JDK-8299482: Remove metaprogramming/isIntegral.hpp</li>
<li>JDK-8299487: Test java/net/httpclient/whitebox/
/SSLTubeTestDriver.java timed out</li>
<li>JDK-8299635: Hotspot update for deprecated sprintf in Xcode 14</li>
<li>JDK-8299779: Test tools/jpackage/share/jdk/jpackage/tests/
/MainClassTest.java timed out</li>
<li>JDK-8299813: java/nio/channels/DatagramChannel/Disconnect.java
fails with jtreg test timeout due to lost datagram</li>
<li>JDK-8299971: Remove metaprogramming/conditional.hpp</li>
<li>JDK-8299972: Remove metaprogramming/removeReference.hpp</li>
<li>JDK-8300169: Build failure with clang-15</li>
<li>JDK-8300260: Remove metaprogramming/isSame.hpp</li>
<li>JDK-8300264: Remove metaprogramming/isPointer.hpp</li>
<li>JDK-8300265: Remove metaprogramming/isSigned.hpp</li>
<li>JDK-8300806: Update googletest to v1.13.0</li>
<li>JDK-8300910: Remove metaprogramming/integralConstant.hpp</li>
<li>JDK-8301132: Test update for deprecated sprintf in Xcode 14</li>
<li>JDK-8301200: Don't scale timeout stress with timeout factor</li>
<li>JDK-8301274: update for deprecated sprintf for security components</li>
<li>JDK-8301279: update for deprecated sprintf for management components</li>
<li>JDK-8301686: TLS 1.3 handshake fails if server_name doesn't
match resuming session</li>
<li>JDK-8301704: Shorten the number of GCs in UnloadingTest.java
to verify a class loader not being unloaded</li>
<li>JDK-8302495: update for deprecated sprintf for java.desktop</li>
<li>JDK-8302800: Augment NaN handling tests of FDLIBM methods</li>
<li>JDK-8303216: Prefer ArrayList to LinkedList in
sun.net.httpserver.ServerImpl</li>
<li>JDK-8303466: C2: failed: malformed control flow. Limit type
made precise with MaxL/MinL</li>
<li>JDK-8303527: update for deprecated sprintf for
jdk.hotspot.agent</li>
<li>JDK-8303617: update for deprecated sprintf for jdk.jdwp.agent</li>
<li>JDK-8303830: update for deprecated sprintf for
jdk.accessibility</li>
<li>JDK-8303891: Speed up Zip64SizeTest using a small ZIP64 file</li>
<li>JDK-8303920: Avoid calling out to python in
DataDescriptorSignatureMissing test</li>
<li>JDK-8303942: os::write should write completely</li>
<li>JDK-8303965: java.net.http.HttpClient should reset the stream
if response headers contain malformed header fields</li>
<li>JDK-8304375: jdk/jfr/api/consumer/filestream/TestOrdered.java
failed with "Expected at least some events to be out of order!
Reuse = false"</li>
<li>JDK-8304962: sun/net/www/http/KeepAliveCache/B5045306.java:
java.lang.RuntimeException: Failed: Initial Keep Alive
Connection is not being reused</li>
<li>JDK-8304963: HttpServer closes connection after processing
HEAD after JDK-7026262</li>
<li>JDK-8305072: Win32ShellFolder2.compareTo is inconsistent</li>
<li>JDK-8305079: Remove finalize() from compiler/c2/Test719030</li>
<li>JDK-8305081: Remove finalize() from
test/hotspot/jtreg/compiler/runtime/Test8168712</li>
<li>JDK-8305825: getBounds API returns wrong value resulting in
multiple Regression Test Failures on Ubuntu 23.04</li>
<li>JDK-8305959: x86: Improve itable_stub</li>
<li>JDK-8306583: Add JVM crash check in CDSTestUtils.executeAndLog</li>
<li>JDK-8306929: Avoid CleanClassLoaderDataMetaspaces safepoints
when previous versions are shared</li>
<li>JDK-8306946: jdk/test/lib/process/
/ProcessToolsStartProcessTest.java fails with "wrong number of
lines in OutputAnalyzer output"</li>
<li>JDK-8307091: A few client tests intermittently throw
ConcurrentModificationException</li>
<li>JDK-8307193: Several Swing jtreg tests use class.forName on
L&F classes</li>
<li>JDK-8307352: AARCH64: Improve itable_stub</li>
<li>JDK-8307448: Test RedefineSharedClassJFR fail due to wrong assumption</li>
<li>JDK-8307779: Relax the java.awt.Robot specification</li>
<li>JDK-8307848: update for deprecated sprintf for jdk.attach</li>
<li>JDK-8307850: update for deprecated sprintf for jdk.jdi</li>
<li>JDK-8308022: update for deprecated sprintf for java.base</li>
<li>JDK-8308144: Uncontrolled memory consumption in
SSLFlowDelegate.Reader</li>
<li>JDK-8308184: Launching java with large number of jars in
classpath with java.protocol.handler.pkgs system property set
can lead to StackOverflowError</li>
<li>JDK-8308801: update for deprecated sprintf for libnet in java.base</li>
<li>JDK-8308891: TestCDSVMCrash.java needs @requires vm.cds</li>
<li>JDK-8309241: ClassForNameLeak fails intermittently as the
class loader hasn't been unloaded</li>
<li>JDK-8309621: [XWayland][Screencast] screen capture failure
with sun.java2d.uiScale other than 1</li>
<li>JDK-8309703: AIX build fails after JDK-8280982</li>
<li>JDK-8309756: Occasional crashes with pipewire screen capture on Wayland</li>
<li>JDK-8309934: Update GitHub Actions to use JDK 17 for building jtreg</li>
<li>JDK-8310070: Test:
javax/net/ssl/DTLS/DTLSWontNegotiateV10.java timed out</li>
<li>JDK-8310108: Skip ReplaceCriticalClassesForSubgraphs when
EnableJVMCI is specified</li>
<li>JDK-8310201: Reduce verbose locale output in -XshowSettings
launcher option</li>
<li>JDK-8310334: [XWayland][Screencast] screen capture error
message in debug</li>
<li>JDK-8310628: GcInfoBuilder.c missing JNI Exception checks</li>
<li>JDK-8310683: Refactor StandardCharset/standard.java to use JUnit</li>
<li>JDK-8311208: Improve CDS Support</li>
<li>JDK-8311666: Disabled tests in test/jdk/sun/java2d/marlin</li>
<li>JDK-8312049: runtime/logging/ClassLoadUnloadTest can be improved</li>
<li>JDK-8312140: jdk/jshell tests failed with JDI socket timeouts</li>
<li>JDK-8312229: Crash involving yield, switch and anonymous classes</li>
<li>JDK-8313256: Exclude failing multicast tests on AIX</li>
<li>JDK-8313394: Array Elements in OldObjectSample event has the
incorrect description</li>
<li>JDK-8313674: (fc) java/nio/channels/FileChannel/
/BlockDeviceSize.java should test for more block devices</li>
<li>JDK-8313697: [XWayland][Screencast] consequent getPixelColor
calls are slow</li>
<li>JDK-8313873: java/nio/channels/DatagramChannel/
/SendReceiveMaxSize.java fails on AIX due to small default
RCVBUF size and different IPv6 Header interpretation</li>
<li>JDK-8313901: [TESTBUG] test/hotspot/jtreg/compiler/codecache/
/CodeCacheFullCountTest.java fails with
java.lang.VirtualMachineError</li>
<li>JDK-8314476: TestJstatdPortAndServer.java failed with
"java.rmi.NoSuchObjectException: no such object in table"</li>
<li>JDK-8314614: jdk/jshell/ImportTest.java failed with
"InternalError: Failed remote listen"</li>
<li>JDK-8314837: 5 compiled/codecache tests ignore VM flags</li>
<li>JDK-8315024: Vector API FP reduction tests should not test
for exact equality</li>
<li>JDK-8315362: NMT: summary diff reports threads count incorrectly</li>
<li>JDK-8315422: getSoTimeout() would be in try block in SSLSocketImpl</li>
<li>JDK-8315437: Enable parallelism in
vmTestbase/nsk/monitoring/stress/classload tests</li>
<li>JDK-8315442: Enable parallelism in
vmTestbase/nsk/monitoring/stress/thread tests</li>
<li>JDK-8315559: Delay TempSymbol cleanup to avoid symbol table churn</li>
<li>JDK-8315576: compiler/codecache/CodeCacheFullCountTest.java
fails after JDK-8314837</li>
<li>JDK-8315651: Stop hiding AIX specific multicast socket errors
via NetworkConfiguration (aix)</li>
<li>JDK-8315684: Parallelize
sun/security/util/math/TestIntegerModuloP.java</li>
<li>JDK-8315774: Enable parallelism in vmTestbase/gc/g1/unloading tests</li>
<li>JDK-8315804: Open source several Swing JTabbedPane JTextArea
JTextField tests</li>
<li>JDK-8315936: Parallelize gc/stress/TestStressG1Humongous.java test</li>
<li>JDK-8315965: Open source various AWT applet tests</li>
<li>JDK-8316104: Open source several Swing SplitPane and
RadioButton related tests</li>
<li>JDK-8316193: jdk/jfr/event/oldobject/TestListenerLeak.java
java.lang.Exception: Could not find leak</li>
<li>JDK-8316211: Open source several manual applet tests</li>
<li>JDK-8316240: Open source several add/remove MenuBar manual tests</li>
<li>JDK-8316285: Opensource JButton manual tests</li>
<li>JDK-8316306: Open source and convert manual Swing test</li>
<li>JDK-8316328: Test jdk/jfr/event/oldobject/
/TestSanityDefault.java times out for some heap sizes</li>
<li>JDK-8316387: Exclude more failing multicast tests on AIX
after JDK-8315651</li>
<li>JDK-8316389: Open source few AWT applet tests</li>
<li>JDK-8316468: os::write incorrectly handles partial write</li>
<li>JDK-8316973: GC: Make TestDisableDefaultGC use createTestJvm</li>
<li>JDK-8317112: Add screenshot for Frame/DefaultSizeTest.java</li>
<li>JDK-8317228: GC: Make TestXXXHeapSizeFlags use createTestJvm</li>
<li>JDK-8317288: [macos] java/awt/Window/Grab/GrabTest.java:
Press on the outside area didn't cause ungrab</li>
<li>JDK-8317316: G1: Make TestG1PercentageOptions use
createTestJvm</li>
<li>JDK-8317343: GC: Make TestHeapFreeRatio use createTestJvm</li>
<li>JDK-8317358: G1: Make TestMaxNewSize use createTestJvm</li>
<li>JDK-8317360: Missing null checks in JfrCheckpointManager and
JfrStringPool initialization routines</li>
<li>JDK-8317372: Refactor some NumberFormat tests to use JUnit</li>
<li>JDK-8317635: Improve GetClassFields test to verify
correctness of field order</li>
<li>JDK-8317831: compiler/codecache/CheckLargePages.java fails on
OL 8.8 with unexpected memory string</li>
<li>JDK-8318039: GHA: Bump macOS and Xcode versions</li>
<li>JDK-8318089: Class space not marked as such with NMT when CDS is off</li>
<li>JDK-8318474: Fix memory reporter for thread_count</li>
<li>JDK-8318479: [jmh] the test security.CacheBench failed for
multiple threads run</li>
<li>JDK-8318605: Enable parallelism in
vmTestbase/nsk/stress/stack tests</li>
<li>JDK-8318696: Do not use LFS64 symbols on Linux</li>
<li>JDK-8318986: Improve GenericWaitBarrier performance</li>
<li>JDK-8319103: Popups that request focus are not shown on Linux with Wayland</li>
<li>JDK-8319197: Exclude hb-subset and hb-style from compilation</li>
<li>JDK-8319406: x86: Shorter movptr(reg, imm) for 32-bit immediates</li>
<li>JDK-8319713: Parallel: Remove
PSAdaptiveSizePolicy::should_full_GC</li>
<li>JDK-8320079: The ArabicBox.java test has no control buttons</li>
<li>JDK-8320379: C2: Sort spilling/unspilling sequence for better
ld/st merging into ldp/stp on AArch64</li>
<li>JDK-8320602: Lock contention in SchemaDVFactory.getInstance()</li>
<li>JDK-8320608: Many jtreg printing tests are missing the
@printer keyword</li>
<li>JDK-8320655: awt screencast robot spin and sync issues with
native libpipewire api</li>
<li>JDK-8320692: Null icon returned for .exe without custom icon</li>
<li>JDK-8320945: problemlist tests failing on latest Windows 11 update</li>
<li>JDK-8321025: Enable Neoverse N1 optimizations for Neoverse V2</li>
<li>JDK-8321176: [Screencast] make a second attempt on screencast failure</li>
<li>JDK-8321220: JFR: RecordedClass reports incorrect modifiers</li>
<li>JDK-8322008: Exclude some CDS tests from running with -Xshare:off</li>
<li>JDK-8322330: JavadocHelperTest.java OOMEs with Parallel GC and ZGC</li>
<li>JDK-8322726: C2: Unloaded signature class kills argument value</li>
<li>JDK-8322971: KEM.getInstance() should check if a 3rd-party
security provider is signed</li>
<li>JDK-8323122: AArch64: Increase itable stub size estimate</li>
<li>JDK-8323584: AArch64: Unnecessary ResourceMark in
NativeCall::set_destination_mt_safe</li>
<li>JDK-8323670: A few client tests intermittently throw
ConcurrentModificationException</li>
<li>JDK-8323801: <s> tag doesn't strikethrough the text</li>
<li>JDK-8324577: [REDO] - [IMPROVE] OPEN_MAX is no longer the max
limit on macOS >= 10.6 for RLIMIT_NOFILE</li>
<li>JDK-8324646: Avoid Class.forName in SecureRandom constructor</li>
<li>JDK-8324648: Avoid NoSuchMethodError when instantiating NativePRNG</li>
<li>JDK-8324668: JDWP process management needs more efficient
file descriptor handling</li>
<li>JDK-8324753: [AIX] adjust os_posix after JDK-8318696</li>
<li>JDK-8324755: Enable parallelism in
vmTestbase/gc/gctests/LargeObjects tests</li>
<li>JDK-8324933: ConcurrentHashTable::statistics_calculate
synchronization is expensive</li>
<li>JDK-8325022: Incorrect error message on client authentication</li>
<li>JDK-8325179: Race in BasicDirectoryModel.validateFileCache</li>
<li>JDK-8325194: GHA: Add macOS M1 testing</li>
<li>JDK-8325384: sun/security/ssl/SSLSessionImpl/
/ResumptionUpdateBoundValues.java failing intermittently when
main thread is a virtual thread</li>
<li>JDK-8325444: GHA: JDK-8325194 causes a regression</li>
<li>JDK-8325567: jspawnhelper without args fails with segfault</li>
<li>JDK-8325620: HTMLReader uses ConvertAction instead of
specified CharacterAction for <b>, <i>, <u></li>
<li>JDK-8325621: Improve jspawnhelper version checks</li>
<li>JDK-8325754: Dead AbstractQueuedSynchronizer$ConditionNodes
survive minor garbage collections</li>
<li>JDK-8326106: Write and clear stack trace table outside of safepoint</li>
<li>JDK-8326332: Unclosed inline tags cause misalignment in
summary tables</li>
<li>JDK-8326446: The User and System of jdk.CPULoad on Apple M1 are inaccurate</li>
<li>JDK-8326734: text-decoration applied to <span> lost when
mixed with <u> or <s></li>
<li>JDK-8327007: javax/swing/JSpinner/8008657/bug8008657.java fails</li>
<li>JDK-8327137: Add test for ConcurrentModificationException in
BasicDirectoryModel</li>
<li>JDK-8327312: [17u] Problem list
ReflectionCallerCacheTest.java due to 8324978</li>
<li>JDK-8327424: ProblemList serviceability/sa/TestJmapCore.java
on all platforms with ZGC</li>
<li>JDK-8327650: Test java/nio/channels/DatagramChannel/
/StressNativeSignal.java timed out</li>
<li>JDK-8327787: Convert javax/swing/border/Test4129681.java
applet test to main</li>
<li>JDK-8327840: Automate javax/swing/border/Test4129681.java</li>
<li>JDK-8328011: Convert java/awt/Frame/GetBoundsResizeTest/
/GetBoundsResizeTest.java applet test to main</li>
<li>JDK-8328075: Shenandoah: Avoid forwarding when objects don't
move in full-GC</li>
<li>JDK-8328110: Allow simultaneous use of PassFailJFrame with
split UI and additional windows</li>
<li>JDK-8328115: Convert java/awt/font/TextLayout/
/TestJustification.html applet test to main</li>
<li>JDK-8328158: Convert java/awt/Choice/NonFocusablePopupMenuTest
to automatic main test</li>
<li>JDK-8328218: Delete test
java/awt/Window/FindOwner/FindOwner.html</li>
<li>JDK-8328234: Remove unused nativeUtils files</li>
<li>JDK-8328238: Convert few closed manual applet tests to main</li>
<li>JDK-8328269: NonFocusablePopupMenuTest.java should be marked as headful</li>
<li>JDK-8328273: sun/management/jmxremote/bootstrap/
/RmiRegistrySslTest.java failed with
java.rmi.server.ExportException: Port already in use</li>
<li>JDK-8328560: java/awt/event/MouseEvent/ClickDuringKeypress/
/ClickDuringKeypress.java imports Applet</li>
<li>JDK-8328561: test java/awt/Robot/ManualInstructions/
/ManualInstructions.java isn't used</li>
<li>JDK-8328642: Convert applet test
MouseDraggedOutCauseScrollingTest.html to main</li>
<li>JDK-8328647: TestGarbageCollectorMXBean.java fails with
C1-only and -Xcomp</li>
<li>JDK-8328896: Fontmetrics for large Fonts has zero width</li>
<li>JDK-8328953: JEditorPane.read throws ChangedCharSetException</li>
<li>JDK-8328999: Update GIFlib to 5.2.2</li>
<li>JDK-8329004: Update Libpng to 1.6.43</li>
<li>JDK-8329103: assert(!thread->in_asgct()) failed during
multi-mode profiling</li>
<li>JDK-8329109: Threads::print_on() tries to print CPU time for
terminated GC threads</li>
<li>JDK-8329126: No native wrappers generated anymore with
-XX:-TieredCompilation after JDK-8251462</li>
<li>JDK-8329134: Reconsider TLAB zapping</li>
<li>JDK-8329510: Update ProblemList for
JFileChooser/8194044/FileSystemRootTest.java</li>
<li>JDK-8329559: Test javax/swing/JFrame/bug4419914.java failed
because The End and Start buttons are not placed correctly and
Tab focus does not move as expected</li>
<li>JDK-8329605: hs errfile generic events - move memory
protections and nmethod flushes to separate sections</li>
<li>JDK-8329663: hs_err file event log entry for thread
adding/removing should print current thread</li>
<li>JDK-8329667: [macos] Issue with JTree related fix for JDK-8317771</li>
<li>JDK-8329995: Restricted access to <code>/proc</code> can cause JFR
initialization to crash</li>
<li>JDK-8330063: Upgrade jQuery to 3.7.1</li>
<li>JDK-8330524: Linux ppc64le compile warning with clang in os_linux_ppc.cpp</li>
<li>JDK-8330611: AES-CTR vector intrinsic may read out of bounds (x86_64, AVX-512)</li>
<li>JDK-8330615: avoid signed integer overflows in zip_util.c
readCen / hashN</li>
<li>JDK-8331011: [XWayland] TokenStorage fails under Security Manager</li>
<li>JDK-8331063: Some HttpClient tests don't report leaks</li>
<li>JDK-8331077: nroff man page update for jar tool</li>
<li>JDK-8331164: createJMHBundle.sh download jars fail when url
needed to be redirected</li>
<li>JDK-8331265: Bump update version for OpenJDK: jdk-17.0.13</li>
<li>JDK-8331331: :tier1 target explanation in doc/testing.md is incorrect</li>
<li>JDK-8331466: Problemlist serviceability/dcmd/gc/
/RunFinalizationTest.java on generic-all</li>
<li>JDK-8331605:
jdk/test/lib/TestMutuallyExclusivePlatformPredicates.java test failure</li>
<li>JDK-8331746: Create a test to verify that the cmm id is not ignored</li>
<li>JDK-8331798: Remove unused arg of checkErgonomics() in
TestMaxHeapSizeTools.java</li>
<li>JDK-8331885: C2: meet between unloaded and speculative types
is not symmetric</li>
<li>JDK-8332008: Enable issuestitle check</li>
<li>JDK-8332113: Update nsk.share.Log to be always verbose</li>
<li>JDK-8332174: Remove 2 (unpaired) RLO Unicode characters in
ff_Adlm.xml</li>
<li>JDK-8332248: (fc) java/nio/channels/FileChannel/
/BlockDeviceSize.java failed with RuntimeException</li>
<li>JDK-8332424: Update IANA Language Subtag Registry to Version 2024-05-16</li>
<li>JDK-8332524: Instead of printing "TLSv1.3," it is showing "TLS13"</li>
<li>JDK-8332898: failure_handler: log directory of commands</li>
<li>JDK-8332936: Test vmTestbase/metaspace/gc/watermark_70_80/
/TestDescription.java fails with no GC's recorded</li>
<li>JDK-8333270: HandlersOnComplexResetUpdate and
HandlersOnComplexUpdate tests fail with "Unexpected reference"
if timeoutFactor is less than 1/3</li>
<li>JDK-8333353: Delete extra empty line in CodeBlob.java</li>
<li>JDK-8333398: Uncomment the commented test in test/jdk/java/
/util/jar/JarFile/mrjar/MultiReleaseJarAPI.java</li>
<li>JDK-8333477: Delete extra empty spaces in Makefiles</li>
<li>JDK-8333698: [17u] TestJstatdRmiPort fails after JDK-8333667</li>
<li>JDK-8333716: Shenandoah: Check for disarmed method before
taking the nmethod lock</li>
<li>JDK-8333724: Problem list security/infra/java/security/cert/
/CertPathValidator/certification/CAInterop.java
#teliasonerarootcav1</li>
<li>JDK-8333804: java/net/httpclient/ForbiddenHeadTest.java threw
an exception with 0 failures</li>
<li>JDK-8334166: Enable binary check</li>
<li>JDK-8334297: (so) java/nio/channels/SocketChannel/OpenLeak.java
should not depend on SecurityManager</li>
<li>JDK-8334332: TestIOException.java fails if run by root</li>
<li>JDK-8334333: MissingResourceCauseTestRun.java fails if run by root</li>
<li>JDK-8334335: [TESTBUG] Backport of 8279164 to 11u & 17u
includes elements of JDK-8163327</li>
<li>JDK-8334339: Test java/nio/file/attribute/
/BasicFileAttributeView/CreationTime.java fails on alinux3</li>
<li>JDK-8334418: Update IANA Language Subtag Registry to Version 2024-06-14</li>
<li>JDK-8334482: Shenandoah: Deadlock when safepoint is pending
during nmethods iteration</li>
<li>JDK-8334600: TEST java/net/MulticastSocket/IPMulticastIF.java
fails on linux-aarch64</li>
<li>JDK-8334653: ISO 4217 Amendment 177 Update</li>
<li>JDK-8334769: Shenandoah: Move CodeCache_lock close to its use
in ShenandoahConcurrentNMethodIterator</li>
<li>JDK-8335536: Fix assertion failure in IdealGraphPrinter when
append is true</li>
<li>JDK-8335775: Remove extraneous 's' in comment of
rawmonitor.cpp test file</li>
<li>JDK-8335808: update for deprecated sprintf for jfrTypeSetUtils</li>
<li>JDK-8335918: update for deprecated sprintf for jvmti</li>
<li>JDK-8335967: "text-decoration: none" does not work with "A" HTML tags</li>
<li>JDK-8336301: test/jdk/java/nio/channels/
/AsyncCloseAndInterrupt.java leaves around a FIFO file upon
test completion</li>
<li>JDK-8336928: GHA: Bundle artifacts removal broken</li>
<li>JDK-8337038: Test java/nio/file/attribute/
/BasicFileAttributeView/CreationTime.java shoud set as /native</li>
<li>JDK-8337283: configure.log is truncated when build dir is on
different filesystem</li>
<li>JDK-8337664: Distrust TLS server certificates issued after
Oct 2024 and anchored by Entrust Root CAs</li>
<li>JDK-8337669: [17u] Backport of JDK-8284047 missed to delete a file</li>
<li>JDK-8338139: {ClassLoading,Memory}MXBean::isVerbose methods
are inconsistent with their setVerbose methods</li>
<li>JDK-8338696: (fs) BasicFileAttributes.creationTime() falls
back to epoch if birth time is unavailable (Linux)</li>
<li>JDK-8339869: [21u] Test CreationTime.java fails with
UnsatisfiedLinkError after 8334339</li>
<li>JDK-8341057: Add 2 SSL.com TLS roots</li>
<li>JDK-8341059: Change Entrust TLS distrust date to November 12, 2024</li>
<li>JDK-8341673: [17u] Remove designator
DEFAULT_PROMOTED_VERSION_PRE=ea for release 17.0.13</li>
</ul>
</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3963=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3963=1</code>
</li>
<li class="list-group-item">
SUSE Manager Proxy 4.3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3963=1</code>
</li>
<li class="list-group-item">
SUSE Manager Retail Branch Server 4.3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.3-2024-3963=1</code>
</li>
<li class="list-group-item">
SUSE Manager Server 4.3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3963=1</code>
</li>
<li class="list-group-item">
openSUSE Leap 15.4
<br/>
<code>zypper in -t patch SUSE-2024-3963=1</code>
</li>
<li class="list-group-item">
openSUSE Leap 15.5
<br/>
<code>zypper in -t patch openSUSE-SLE-15.5-2024-3963=1</code>
</li>
<li class="list-group-item">
openSUSE Leap 15.6
<br/>
<code>zypper in -t patch openSUSE-SLE-15.6-2024-3963=1</code>
</li>
<li class="list-group-item">
Basesystem Module 15-SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3963=1</code>
</li>
<li class="list-group-item">
Basesystem Module 15-SP6
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-3963=1</code>
</li>
<li class="list-group-item">
Legacy Module 15-SP6
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-3963=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3963=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3963=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3963=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
SUSE Manager Proxy 4.3 (x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
SUSE Manager Retail Branch Server 4.3 (x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
SUSE Manager Server 4.3 (ppc64le s390x x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-jmods-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-src-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
openSUSE Leap 15.4 (noarch)
<ul>
<li>java-17-openjdk-javadoc-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-jmods-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-src-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
openSUSE Leap 15.5 (noarch)
<ul>
<li>java-17-openjdk-javadoc-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-jmods-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-src-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
openSUSE Leap 15.6 (noarch)
<ul>
<li>java-17-openjdk-javadoc-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64)
<ul>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
<ul>
<li>java-17-openjdk-headless-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debugsource-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-devel-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-headless-debuginfo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-demo-17.0.13.0-150400.3.48.2</li>
<li>java-17-openjdk-17.0.13.0-150400.3.48.2</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-21208.html">https://www.suse.com/security/cve/CVE-2024-21208.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-21210.html">https://www.suse.com/security/cve/CVE-2024-21210.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-21217.html">https://www.suse.com/security/cve/CVE-2024-21217.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-21235.html">https://www.suse.com/security/cve/CVE-2024-21235.html</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231702">https://bugzilla.suse.com/show_bug.cgi?id=1231702</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231711">https://bugzilla.suse.com/show_bug.cgi?id=1231711</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231716">https://bugzilla.suse.com/show_bug.cgi?id=1231716</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231719">https://bugzilla.suse.com/show_bug.cgi?id=1231719</a>
</li>
</ul>
</div>