Package "openjdk-17"
Name: |
openjdk-17
|
Description: |
This package is just an umbrella for a group of other packages,
it has no description. Description samples from packages in group:
- Java runtime based on OpenJDK (demos and examples)
- OpenJDK Development Kit (JDK) documentation
- Alternative JVM for OpenJDK, using Zero
|
Latest version: |
17.0.10+7-1~23.10.1 |
Release: |
mantic (23.10) |
Level: |
security |
Repository: |
universe |
Links
Other versions of "openjdk-17" in Mantic
Packages in group
Deleted packages are displayed in grey.
Changelog
openjdk-17 (17.0.10+7-1~23.10.1) mantic-security; urgency=high
* OpenJDK 17.0.10 release, build 7.
- CVEs:
+ CVE-2024-20918
+ CVE-2024-20919
+ CVE-2024-20921
+ CVE-2024-20932
+ CVE-2024-20945
+ CVE-2024-20952
- Security fixes:
+ JDK-8276123, JDK-8316613: ZipFile::getEntry will not return a file entry
when there is a directory entry of the same name within a Zip File.
+ JDK-8308204: Enhanced certificate processing.
+ JDK-8314295: Enhance verification of verifier.
+ JDK-8314307: Improve loop handling.
+ JDK-8314468: Improve Compiler loops.
+ JDK-8316976: Improve signature handling.
+ JDK-8317547: Enhance TLS connection support.
[ Vladimir Petko ]
* d/t/jtreg-autopkgtest.sh: Regenerate test script.
* Generate d/watch to cope with early access and release builds.
* d/rules: Trim trailing whitespaces from debian/control.
[ Matthias Klose ]
* Build again zero on amd64 (accidental change in 6ea-1).
[ Pushkar Kulkarni ]
* Minor improvements to the copyright-generator.
[ Pushkar Kulkarni ]
* Upload to Ubuntu 23.10
* d/rules, d/control: relax jtreg version check for repacked orig tarballs
-- Matthias Klose <email address hidden> Wed, 17 Jan 2024 12:09:47 +0100
|
Source diff to previous version |
CVE-2024-20918 |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Suppo |
CVE-2024-20919 |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Suppo |
CVE-2024-20921 |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Suppo |
CVE-2024-20932 |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supp |
CVE-2024-20945 |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supp |
CVE-2024-20952 |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supp |
|
openjdk-17 (17.0.9+9-1~23.10) mantic-security; urgency=high
* Upload to Ubuntu 23.10.
* Release notes correction:
- CVE-2023-22081, CVE-2023-22025.
- Release notes:
https://mail.openjdk.org/pipermail/jdk-updates-dev/2023-October/026352.html
|
CVE-2023-22081 |
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of Oracle Java SE (component: JSSE). Supported versions that are affected are Or |
CVE-2023-22025 |
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Suppo |
|
About
-
Send Feedback to @ubuntu_updates