Security Information / 2020 / Security Information -- DSA-4779-1 openjdk-11

Debian Security Advisory

DSA-4779-1 openjdk-11 -- security update

Date Reported:

25 Oct 2020

Affected Packages:

openjdk-11

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2020-14779, CVE-2020-14781, CVE-2020-14782, CVE-2020-14792, CVE-2020-14796, CVE-2020-14797, CVE-2020-14798, CVE-2020-14803.

More information:

Several vulnerabilities have been discovered in the OpenJDK Java runtime, which could result in denial of service, information disclosure, bypass of access/sandbox restrictions or the acceptance of untrusted certificates.

For the stable distribution (buster), these problems have been fixed in version 11.0.9+11-1~deb10u1.

We recommend that you upgrade your openjdk-11 packages.

For the detailed security status of openjdk-11 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/openjdk-11