{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"low"},"category":"csaf_security_advisory","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"Security update for java-17-openjdk","title":"Title of the patch"},{"category":"description","text":"This update for java-17-openjdk fixes the following issues:\n\n- CVE-2024-21011: Fixed denial of service due to long Exception message logging (JDK-8319851,bsc#1222979)\n- CVE-2024-21012: Fixed unauthorized data modification due HTTP/2 client improper reverse DNS lookup (JDK-8315708,bsc#1222987)\n- CVE-2024-21068: Fixed integer overflow in C1 compiler address generation (JDK-8322122,bsc#1222983)  \n- CVE-2024-21094: Fixed unauthorized data modification due to C2 compilation failure with 'Exceeded _node_regs array' (JDK-8317507,JDK-8325348,bsc#1222986)\n\nOther fixes:\n- Update to upstream tag jdk-17.0.11+9 (April 2024 CPU)\n  * Security fixes\n    + JDK-8318340: Improve RSA key implementations\n  * Other changes\n    + JDK-6928542: Chinese characters in RTF are not decoded\n    + JDK-7132796: [macosx] closed/javax/swing/JComboBox/4517214/\n      /bug4517214.java fails on MacOS\n    + JDK-7148092: [macosx] When Alt+down arrow key is pressed, the\n      combobox popup does not appear.\n    + JDK-7167356: (javac) investigate failing tests in\n      JavacParserTest\n    + JDK-8054022: HttpURLConnection timeouts with Expect:\n      100-Continue and no chunking\n    + JDK-8054572: [macosx] JComboBox paints the border incorrectly\n    + JDK-8169475: WheelModifier.java fails by timeout\n    + JDK-8205076: [17u] Inet6AddressImpl.c: `lookupIfLocalHost`\n      accesses `int InetAddress.preferIPv6Address` as a boolean\n    + JDK-8209595: MonitorVmStartTerminate.java timed out\n    + JDK-8210410: Refactor java.util.Currency:i18n shell tests to\n      plain java tests\n    + JDK-8261404: Class.getReflectionFactory() is not thread-safe\n    + JDK-8261837: SIGSEGV in ciVirtualCallTypeData::translate_from\n    + JDK-8263256: Test java/net/Inet6Address/serialize/\n      /Inet6AddressSerializationTest.java fails due to dynamic\n      reconfigurations of network interface during test\n    + JDK-8269258: java/net/httpclient/ManyRequestsLegacy.java\n      failed with connection timeout\n    + JDK-8271118: C2: StressGCM should have higher priority than\n      frequency-based policy\n    + JDK-8271616: oddPart in MutableBigInteger::mutableModInverse\n      contains info on final result\n    + JDK-8272811: Document the effects of building with\n      _GNU_SOURCE in os_posix.hpp\n    + JDK-8272853: improve `JavadocTester.runTests`\n    + JDK-8273454: C2: Transform (-a)*(-b) into a*b\n    + JDK-8274060: C2: Incorrect computation after JDK-8273454\n    + JDK-8274122: java/io/File/createTempFile/SpecialTempFile.java\n      fails in Windows 11\n    + JDK-8274621: NullPointerException because listenAddress[0] is\n      null\n    + JDK-8274632: Possible pointer overflow in PretouchTask chunk\n      claiming\n    + JDK-8274634: Use String.equals instead of String.compareTo in\n      java.desktop\n    + JDK-8276125: RunThese24H.java SIGSEGV in\n      JfrThreadGroup::thread_group_id\n    + JDK-8278028: [test-library] Warnings cleanup of the test\n      library\n    + JDK-8278312: Update SimpleSSLContext keystore to use SANs for\n      localhost IP addresses\n    + JDK-8278363: Create extented container test groups\n    + JDK-8280241: (aio) AsynchronousSocketChannel init fails in\n      IPv6 only Windows env\n    + JDK-8281377: Remove vmTestbase/nsk/monitoring/ThreadMXBean/\n      /ThreadInfo/Deadlock/JavaDeadlock001/TestDescription.java from\n      problemlist.\n    + JDK-8281543: Remove unused code/headerfile dtraceAttacher.hpp\n    + JDK-8281585: Remove unused imports under test/lib and jtreg/gc\n    + JDK-8283400: [macos] a11y : Screen magnifier does not reflect\n      JRadioButton value change\n    + JDK-8283626: AArch64: Set relocInfo::offset_unit to 4\n    + JDK-8283994: Make Xerces DatatypeException stackless\n    + JDK-8286312: Stop mixing signed and unsigned types in bit\n      operations\n    + JDK-8286846: test/jdk/javax/swing/plaf/aqua/\n      /CustomComboBoxFocusTest.java fails on mac aarch64\n    + JDK-8287832: jdk/jfr/event/runtime/TestActiveSettingEvent.java\n      failed with 'Expected two batches of Active Setting events'\n    + JDK-8288663: JFR: Disabling the JfrThreadSampler commits only\n      a partially disabled state\n    + JDK-8288846: misc tests fail 'assert(ms < 1000) failed:\n      Un-interruptable sleep, short time use only'\n    + JDK-8289764: gc/lock tests failed with 'OutOfMemoryError:\n      Java heap space: failed reallocation of scalar replaced\n      objects'\n    + JDK-8290041: ModuleDescriptor.hashCode is inconsistent\n    + JDK-8290203: ProblemList vmTestbase/nsk/jvmti/scenarios/\n      /capability/CM03/cm03t001/TestDescription.java on linux-all\n    + JDK-8290399: [macos] Aqua LAF does not fire an action event\n      if combo box menu is displayed\n    + JDK-8292458: Atomic operations on scoped enums don't build\n      with clang\n    + JDK-8292946: GC lock/jni/jnilock001 test failed\n      'assert(gch->gc_cause() == GCCause::_scavenge_alot ||\n      !gch->incremental_collection_failed()) failed: Twice in a row'\n    + JDK-8293117: Add atomic bitset functions\n    + JDK-8293547: Add relaxed add_and_fetch for macos aarch64\n      atomics\n    + JDK-8294158: HTML formatting for PassFailJFrame instructions\n    + JDK-8294254: [macOS] javax/swing/plaf/aqua/\n      /CustomComboBoxFocusTest.java failure\n    + JDK-8294535: Add screen capture functionality to\n      PassFailJFrame\n    + JDK-8295068: SSLEngine throws NPE parsing CertificateRequests\n    + JDK-8295124: Atomic::add to pointer type may return wrong\n      value\n    + JDK-8295274: HelidonAppTest.java fails\n      'assert(event->should_commit()) failed: invariant' from\n      compiled frame'\n    + JDK-8296631: NSS tests failing on OL9 linux-aarch64 hosts\n    + JDK-8297968: Crash in PrintOptoAssembly\n    + JDK-8298087: XML Schema Validation reports an required\n      attribute twice via ErrorHandler\n    + JDK-8299494: Test vmTestbase/nsk/stress/except/except011.java\n      failed: ExceptionInInitializerError: target class not found\n    + JDK-8300269: The selected item in an editable JComboBox with\n      titled border is not visible in Aqua LAF\n    + JDK-8301306: java/net/httpclient/* fail with -Xcomp\n    + JDK-8301310: The SendRawSysexMessage test may cause a JVM\n      crash\n    + JDK-8301787: java/net/httpclient/SpecialHeadersTest failing\n      after JDK-8301306\n    + JDK-8301846: Invalid TargetDataLine after screen lock when\n      using JFileChooser or COM library\n    + JDK-8302017: Allocate BadPaddingException only if it will be\n      thrown\n    + JDK-8302149: Speed up compiler/jsr292/methodHandleExceptions/\n      /TestAMEnotNPE.java\n    + JDK-8303605: Memory leaks in Metaspace gtests\n    + JDK-8304074: [JMX] Add an approximation of total bytes\n      allocated on the Java heap by the JVM\n    + JDK-8304696: Duplicate class names in dynamicArchive tests\n      can lead to test failure\n    + JDK-8305356: Fix ignored bad CompileCommands in tests\n    + JDK-8305900: Use loopback IP addresses in security policy\n      files of httpclient tests\n    + JDK-8305906: HttpClient may use incorrect key when finding\n      pooled HTTP/2 connection for IPv6 address\n    + JDK-8305962: update jcstress to 0.16\n    + JDK-8305972: Update XML Security for Java to 3.0.2\n    + JDK-8306014: Update javax.net.ssl TLS tests to use\n      SSLContextTemplate or SSLEngineTemplate\n    + JDK-8306408: Fix the format of several tables in building.md\n    + JDK-8307185: pkcs11 native libraries make JNI calls into java\n      code while holding GC lock\n    + JDK-8307926: Support byte-sized atomic bitset operations\n    + JDK-8307955: Prefer to PTRACE_GETREGSET instead of\n      PTRACE_GETREGS in method 'ps_proc.c::process_get_lwp_regs'\n    + JDK-8307990: jspawnhelper must close its writing side of a\n      pipe before reading from it\n    + JDK-8308043: Deadlock in TestCSLocker.java due to blocking GC\n      while allocating\n    + JDK-8308245: Add -proc:full to describe current default\n      annotation processing policy\n    + JDK-8308336: Test java/net/HttpURLConnection/\n      /HttpURLConnectionExpectContinueTest.java failed:\n      java.net.BindException: Address already in use\n    + JDK-8309302: java/net/Socket/Timeouts.java fails with\n      AssertionError on test temporal post condition\n    + JDK-8309305: sun/security/ssl/SSLSocketImpl/\n      /BlockedAsyncClose.java fails with jtreg test timeout\n    + JDK-8309462: [AIX] vmTestbase/nsk/jvmti/RunAgentThread/\n      /agentthr001/TestDescription.java crashing due to empty while\n      loop\n    + JDK-8309733: [macOS, Accessibility] VoiceOver: Incorrect\n      announcements of JRadioButton\n    + JDK-8309870: Using -proc:full should be considered requesting\n      explicit annotation processing\n    + JDK-8310106: sun.security.ssl.SSLHandshake\n      .getHandshakeProducer() incorrectly checks handshakeConsumers\n    + JDK-8310238: [test bug] javax/swing/JTableHeader/6889007/\n      /bug6889007.java fails\n    + JDK-8310380: Handle problems in core-related tests on macOS\n      when codesign tool does not work\n    + JDK-8310631: test/jdk/sun/nio/cs/TestCharsetMapping.java is\n      spuriously passing\n    + JDK-8310807: java/nio/channels/DatagramChannel/Connect.java\n      timed out\n    + JDK-8310838: Correct range notations in MethodTypeDesc\n      specification\n    + JDK-8310844: [AArch64] C1 compilation fails because monitor\n      offset in OSR buffer is too large for immediate\n    + JDK-8310923: Refactor Currency tests to use JUnit\n    + JDK-8311081: KeytoolReaderP12Test.java fail on localized\n      Windows platform\n    + JDK-8311160: [macOS, Accessibility] VoiceOver: No\n      announcements on JRadioButtonMenuItem and JCheckBoxMenuItem\n    + JDK-8311581: Remove obsolete code and comments in TestLVT.java\n    + JDK-8311645: Memory leak in jspawnhelper spawnChild after\n      JDK-8307990\n    + JDK-8311986: Disable runtime/os/TestTracePageSizes.java for\n      ShenandoahGC\n    + JDK-8312428: PKCS11 tests fail with NSS 3.91\n    + JDK-8312434: SPECjvm2008/xml.transform with CDS fails with\n      'can't seal package nu.xom'\n    + JDK-8313081: MonitoringSupport_lock should be unconditionally\n      initialized after 8304074\n    + JDK-8313082: Enable CreateCoredumpOnCrash for testing in\n      makefiles\n    + JDK-8313206: PKCS11 tests silently skip execution\n    + JDK-8313575: Refactor PKCS11Test tests\n    + JDK-8313621: test/jdk/jdk/internal/math/FloatingDecimal/\n      /TestFloatingDecimal should use RandomFactory\n    + JDK-8313643: Update HarfBuzz to 8.2.2\n    + JDK-8313816: Accessing jmethodID might lead to spurious\n      crashes\n    + JDK-8314164: java/net/HttpURLConnection/\n      /HttpURLConnectionExpectContinueTest.java fails intermittently\n      in timeout\n    + JDK-8314220: Configurable InlineCacheBuffer size\n    + JDK-8314830: runtime/ErrorHandling/ tests ignore external VM\n      flags\n    + JDK-8315034: File.mkdirs() occasionally fails to create\n      folders on Windows shared folder\n    + JDK-8315042: NPE in PKCS7.parseOldSignedData\n    + JDK-8315594: Open source few headless Swing misc tests\n    + JDK-8315600: Open source few more headless Swing misc tests\n    + JDK-8315602: Open source swing security manager test\n    + JDK-8315611: Open source swing text/html and tree test\n    + JDK-8315680: java/lang/ref/ReachabilityFenceTest.java should\n      run with -Xbatch\n    + JDK-8315731: Open source several Swing Text related tests\n    + JDK-8315761: Open source few swing JList and JMenuBar tests\n    + JDK-8315920: C2: 'control input must dominate current\n      control' assert failure\n    + JDK-8315986: [macos14] javax/swing/JMenuItem/4654927/\n      /bug4654927.java: component must be showing on the screen to\n      determine its location\n    + JDK-8316001: GC: Make TestArrayAllocatorMallocLimit use\n      createTestJvm\n    + JDK-8316028: Update FreeType to 2.13.2\n    + JDK-8316030: Update Libpng to 1.6.40\n    + JDK-8316106: Open source few swing JInternalFrame and\n      JMenuBar tests\n    + JDK-8316304: (fs) Add support for BasicFileAttributes\n      .creationTime() for Linux\n    + JDK-8316392: compiler/interpreter/\n      /TestVerifyStackAfterDeopt.java failed with SIGBUS in\n      PcDescContainer::find_pc_desc_internal\n    + JDK-8316414: C2: large byte array clone triggers 'failed:\n      malformed control flow' assertion failure on linux-x86\n    + JDK-8316415: Parallelize\n      sun/security/rsa/SignedObjectChain.java subtests\n    + JDK-8316418: containers/docker/TestMemoryWithCgroupV1.java\n      get OOM killed with Parallel GC\n    + JDK-8316445: Mark com/sun/management/HotSpotDiagnosticMXBean/\n      /CheckOrigin.java as vm.flagless\n    + JDK-8316679: C2 SuperWord: wrong result, load should not be\n      moved before store if not comparable\n    + JDK-8316693: Simplify at-requires checkDockerSupport()\n    + JDK-8316929: Shenandoah: Shenandoah degenerated GC and full\n      GC need to cleanup old OopMapCache entries\n    + JDK-8316947: Write a test to check textArea triggers\n      MouseEntered/MouseExited events properly\n    + JDK-8317039: Enable specifying the JDK used to run jtreg\n    + JDK-8317144: Exclude sun/security/pkcs11/sslecc/\n      /ClientJSSEServerJSSE.java on Linux ppc64le\n    + JDK-8317307: test/jdk/com/sun/jndi/ldap/\n      /LdapPoolTimeoutTest.java fails with ConnectException:\n      Connection timed out: no further information\n    + JDK-8317603: Improve exception messages thrown by\n      sun.nio.ch.Net native methods (win)\n    + JDK-8317771: [macos14] Expand/collapse a JTree using keyboard\n      freezes the application in macOS 14 Sonoma\n    + JDK-8317807: JAVA_FLAGS removed from jtreg running in\n      JDK-8317039\n    + JDK-8317960: [17u] Excessive CPU usage on\n      AbstractQueuedSynchronized.isEnqueued\n    + JDK-8318154: Improve stability of WheelModifier.java test\n    + JDK-8318183: C2: VM may crash after hitting node limit\n    + JDK-8318410: jdk/java/lang/instrument/BootClassPath/\n      /BootClassPathTest.sh fails on Japanese Windows\n    + JDK-8318468: compiler/tiered/LevelTransitionTest.java fails\n      with -XX:CompileThreshold=100 -XX:TieredStopAtLevel=1\n    + JDK-8318490: Increase timeout for JDK tests that are close to\n      the limit when run with libgraal\n    + JDK-8318603: Parallelize sun/java2d/marlin/ClipShapeTest.java\n    + JDK-8318607: Enable parallelism in vmTestbase/nsk/stress/jni\n      tests\n    + JDK-8318608: Enable parallelism in\n      vmTestbase/nsk/stress/threads tests\n    + JDK-8318689: jtreg is confused when folder name is the same\n      as the test name\n    + JDK-8318736: com/sun/jdi/JdwpOnThrowTest.java failed with\n      'transport error 202: bind failed: Address already in use'\n    + JDK-8318951: Additional negative value check in JPEG decoding\n    + JDK-8318955: Add ReleaseIntArrayElements in\n      Java_sun_awt_X11_XlibWrapper_SetBitmapShape XlbWrapper.c to\n      early return\n    + JDK-8318957: Enhance agentlib:jdwp help output by info about\n      allow option\n    + JDK-8318961: increase javacserver connection timeout values\n      and max retry attempts\n    + JDK-8318971: Better Error Handling for Jar Tool When\n      Processing Non-existent Files\n    + JDK-8318983: Fix comment typo in PKCS12Passwd.java\n    + JDK-8319124: Update XML Security for Java to 3.0.3\n    + JDK-8319213: Compatibility.java reads both stdout and stderr\n      of JdkUtils\n    + JDK-8319436: Proxy.newProxyInstance throws NPE if loader is\n      null and interface not visible from class loader\n    + JDK-8319456: jdk/jfr/event/gc/collection/\n      /TestGCCauseWith[Serial|Parallel].java : GC cause 'GCLocker\n      Initiated GC' not in the valid causes\n    + JDK-8319668: Fixup of jar filename typo in BadFactoryTest.sh\n    + JDK-8319922: libCreationTimeHelper.so fails to link in JDK 21\n    + JDK-8319961: JvmtiEnvBase doesn't zero _ext_event_callbacks\n    + JDK-8320001: javac crashes while adding type annotations to\n      the return type of a constructor\n    + JDK-8320168: handle setsocktopt return values\n    + JDK-8320208: Update Public Suffix List to b5bf572\n    + JDK-8320300: Adjust hs_err output in malloc/mmap error cases\n    + JDK-8320363: ppc64 TypeEntries::type_unknown logic looks\n      wrong, missed optimization opportunity\n    + JDK-8320597: RSA signature verification fails on signed data\n      that does not encode params correctly\n    + JDK-8320798: Console read line with zero out should zero out\n      underlying buffer\n    + JDK-8320885: Bump update version for OpenJDK: jdk-17.0.11\n    + JDK-8320921: GHA: Parallelize hotspot_compiler test jobs\n    + JDK-8320937: support latest VS2022 MSC_VER in\n      abstract_vm_version.cpp\n    + JDK-8321151: JDK-8294427 breaks Windows L&F on all older\n      Windows versions\n    + JDK-8321215: Incorrect x86 instruction encoding for VSIB\n      addressing mode\n    + JDK-8321408: Add Certainly roots R1 and E1\n    + JDK-8321480: ISO 4217 Amendment 176 Update\n    + JDK-8321599: Data loss in AVX3 Base64 decoding\n    + JDK-8321815: Shenandoah: gc state should be synchronized to\n      java threads only once per safepoint\n    + JDK-8321972: test runtime/Unsafe/InternalErrorTest.java\n      timeout on linux-riscv64 platform\n    + JDK-8322098: os::Linux::print_system_memory_info enhance the\n      THP output with\n      /sys/kernel/mm/transparent_hugepage/hpage_pmd_size\n    + JDK-8322321: Add man page doc for -XX:+VerifySharedSpaces\n    + JDK-8322417: Console read line with zero out should zero out\n      when throwing exception\n    + JDK-8322583: RISC-V: Enable fast class initialization checks\n    + JDK-8322725: (tz) Update Timezone Data to 2023d\n    + JDK-8322750: Test 'api/java_awt/interactive/\n      /SystemTrayTests.html' failed because A blue ball icon is\n      added outside of the system tray\n    + JDK-8322772: Clean up code after JDK-8322417\n    + JDK-8322783: prioritize /etc/os-release over\n      /etc/SuSE-release in hs_err/info output\n    + JDK-8322968: [17u] Amend Atomics gtest with 1-byte tests\n    + JDK-8323008: filter out harmful -std* flags added by autoconf\n      from CXX\n    + JDK-8323021: Shenandoah: Encountered reference count always\n      attributed to first worker thread\n    + JDK-8323086: Shenandoah: Heap could be corrupted by oom\n      during evacuation\n    + JDK-8323243: JNI invocation of an abstract instance method\n      corrupts the stack\n    + JDK-8323331: fix typo hpage_pdm_size\n    + JDK-8323428: Shenandoah: Unused memory in regions compacted\n      during a full GC should be mangled\n    + JDK-8323515: Create test alias 'all' for all test roots\n    + JDK-8323637: Capture hotspot replay files in GHA\n    + JDK-8323640: [TESTBUG]testMemoryFailCount in\n      jdk/internal/platform/docker/TestDockerMemoryMetrics.java\n      always fail because OOM killed\n    + JDK-8323806: [17u] VS2017 build fails with warning after\n      8293117.\n    + JDK-8324184: Windows VS2010 build failed with 'error C2275:\n      'int64_t''\n    + JDK-8324280: RISC-V: Incorrect implementation in\n      VM_Version::parse_satp_mode\n    + JDK-8324347: Enable 'maybe-uninitialized' warning for\n      FreeType 2.13.1\n    + JDK-8324514: ClassLoaderData::print_on should print address\n      of class loader\n    + JDK-8324647: Invalid test group of lib-test after JDK-8323515\n    + JDK-8324659: GHA: Generic jtreg errors are not reported\n    + JDK-8324937: GHA: Avoid multiple test suites per job\n    + JDK-8325096: Test java/security/cert/CertPathBuilder/akiExt/\n      /AKISerialNumber.java is failing\n    + JDK-8325150: (tz) Update Timezone Data to 2024a\n    + JDK-8325585: Remove no longer necessary calls to\n      set/unset-in-asgct flag in JDK 17\n    + JDK-8326000: Remove obsolete comments for class\n      sun.security.ssl.SunJSSE\n    + JDK-8327036: [macosx-aarch64] SIGBUS in\n      MarkActivationClosure::do_code_blob reached from\n      Unsafe_CopySwapMemory0\n    + JDK-8327391: Add SipHash attribution file\n    + JDK-8329836: [17u] Remove designator\n      DEFAULT_PROMOTED_VERSION_PRE=ea for release 17.0.11\n\n- Removed the possibility to use the system timezone-java (bsc#1213470).\n","title":"Description of the patch"},{"category":"details","text":"SUSE-2024-1499,SUSE-SLE-Module-Basesystem-15-SP6-2024-1499,SUSE-SLE-Module-Legacy-15-SP6-2024-1499,openSUSE-SLE-15.6-2024-1499","title":"Patchnames"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"SUSE ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"self","summary":"URL of this CSAF notice","url":"https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1499-2.json"},{"category":"self","summary":"URL for SUSE-SU-2024:1499-2","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20241499-2/"},{"category":"self","summary":"E-Mail link for SUSE-SU-2024:1499-2","url":"https://lists.suse.com/pipermail/sle-updates/2024-August/036652.html"},{"category":"self","summary":"SUSE Bug 1213470","url":"https://bugzilla.suse.com/1213470"},{"category":"self","summary":"SUSE Bug 1222979","url":"https://bugzilla.suse.com/1222979"},{"category":"self","summary":"SUSE Bug 1222983","url":"https://bugzilla.suse.com/1222983"},{"category":"self","summary":"SUSE Bug 1222986","url":"https://bugzilla.suse.com/1222986"},{"category":"self","summary":"SUSE Bug 1222987","url":"https://bugzilla.suse.com/1222987"},{"category":"self","summary":"SUSE CVE CVE-2024-21011 page","url":"https://www.suse.com/security/cve/CVE-2024-21011/"},{"category":"self","summary":"SUSE CVE CVE-2024-21012 page","url":"https://www.suse.com/security/cve/CVE-2024-21012/"},{"category":"self","summary":"SUSE CVE CVE-2024-21068 page","url":"https://www.suse.com/security/cve/CVE-2024-21068/"},{"category":"self","summary":"SUSE CVE CVE-2024-21094 page","url":"https://www.suse.com/security/cve/CVE-2024-21094/"}],"title":"Security update for java-17-openjdk","tracking":{"current_release_date":"2024-06-18T11:05:03Z","generator":{"date":"2024-06-18T11:05:03Z","engine":{"name":"cve-database.git:bin/generate-csaf.pl","version":"1"}},"id":"SUSE-SU-2024:1499-2","initial_release_date":"2024-06-18T11:05:03Z","revision_history":[{"date":"2024-06-18T11:05:03Z","number":"1","summary":"Current version"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_version","name":"java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","product":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","product_id":"java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64"}},{"category":"product_version","name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","product":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","product_id":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64"}},{"category":"product_version","name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","product":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","product_id":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64"}},{"category":"product_version","name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","product":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","product_id":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64"}},{"category":"product_version","name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","product":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","product_id":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64"}},{"category":"product_version","name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","product":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","product_id":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64"}}],"category":"architecture","name":"aarch64"},{"branches":[{"category":"product_version","name":"java-17-openjdk-17.0.11.0-150400.3.42.1.i586","product":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.i586","product_id":"java-17-openjdk-17.0.11.0-150400.3.42.1.i586"}},{"category":"product_version","name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.i586","product":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.i586","product_id":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.i586"}},{"category":"product_version","name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.i586","product":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.i586","product_id":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.i586"}},{"category":"product_version","name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.i586","product":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.i586","product_id":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.i586"}},{"category":"product_version","name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.i586","product":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.i586","product_id":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.i586"}},{"category":"product_version","name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.i586","product":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.i586","product_id":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.i586"}}],"category":"architecture","name":"i586"},{"branches":[{"category":"product_version","name":"java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","product":{"name":"java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","product_id":"java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch"}}],"category":"architecture","name":"noarch"},{"branches":[{"category":"product_version","name":"java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","product":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","product_id":"java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le"}},{"category":"product_version","name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","product":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","product_id":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le"}},{"category":"product_version","name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","product":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","product_id":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le"}},{"category":"product_version","name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","product":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","product_id":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le"}},{"category":"product_version","name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","product":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","product_id":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le"}},{"category":"product_version","name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","product":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","product_id":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le"}}],"category":"architecture","name":"ppc64le"},{"branches":[{"category":"product_version","name":"java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","product":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","product_id":"java-17-openjdk-17.0.11.0-150400.3.42.1.s390x"}},{"category":"product_version","name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","product":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","product_id":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x"}},{"category":"product_version","name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","product":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","product_id":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x"}},{"category":"product_version","name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","product":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","product_id":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x"}},{"category":"product_version","name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","product":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","product_id":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x"}},{"category":"product_version","name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","product":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","product_id":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x"}}],"category":"architecture","name":"s390x"},{"branches":[{"category":"product_version","name":"java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","product":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","product_id":"java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64"}},{"category":"product_version","name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","product":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","product_id":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64"}},{"category":"product_version","name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","product":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","product_id":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64"}},{"category":"product_version","name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","product":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","product_id":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64"}},{"category":"product_version","name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","product":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","product_id":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64"}},{"category":"product_version","name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64","product":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64","product_id":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"}}],"category":"architecture","name":"x86_64"},{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Module for Basesystem 15 SP6","product":{"name":"SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-basesystem:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Legacy 15 SP6","product":{"name":"SUSE Linux Enterprise Module for Legacy 15 SP6","product_id":"SUSE Linux Enterprise Module for Legacy 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-legacy:15:sp6"}}},{"category":"product_name","name":"openSUSE Leap 15.6","product":{"name":"openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6","product_identification_helper":{"cpe":"cpe:/o:opensuse:leap:15.6"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6","product_id":"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Module for Basesystem 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64 as component of SUSE Linux Enterprise Module for Legacy 15 SP6","product_id":"SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"SUSE Linux Enterprise Module for Legacy 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le as component of SUSE Linux Enterprise Module for Legacy 15 SP6","product_id":"SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"SUSE Linux Enterprise Module for Legacy 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x as component of SUSE Linux Enterprise Module for Legacy 15 SP6","product_id":"SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Module for Legacy 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15 SP6","product_id":"SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Module for Legacy 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.s390x as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch"},"product_reference":"java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64"},"product_reference":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le"},"product_reference":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x"},"product_reference":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"},"product_reference":"java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64","relates_to_product_reference":"openSUSE Leap 15.6"}]},"vulnerabilities":[{"cve":"CVE-2024-21011","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2024-21011"}],"notes":[{"category":"general","text":"unknown","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2024-21011","url":"https://www.suse.com/security/cve/CVE-2024-21011"},{"category":"external","summary":"SUSE Bug 1222979 for CVE-2024-21011","url":"https://bugzilla.suse.com/1222979"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.7,"baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","version":"3.1"},"products":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"threats":[{"category":"impact","date":"2024-06-18T11:05:03Z","details":"low"}],"title":"CVE-2024-21011"},{"cve":"CVE-2024-21012","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2024-21012"}],"notes":[{"category":"general","text":"unknown","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2024-21012","url":"https://www.suse.com/security/cve/CVE-2024-21012"},{"category":"external","summary":"SUSE Bug 1222987 for CVE-2024-21012","url":"https://bugzilla.suse.com/1222987"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.7,"baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","version":"3.1"},"products":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"threats":[{"category":"impact","date":"2024-06-18T11:05:03Z","details":"low"}],"title":"CVE-2024-21012"},{"cve":"CVE-2024-21068","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2024-21068"}],"notes":[{"category":"general","text":"unknown","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2024-21068","url":"https://www.suse.com/security/cve/CVE-2024-21068"},{"category":"external","summary":"SUSE Bug 1222983 for CVE-2024-21068","url":"https://bugzilla.suse.com/1222983"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.7,"baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","version":"3.1"},"products":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"threats":[{"category":"impact","date":"2024-06-18T11:05:03Z","details":"low"}],"title":"CVE-2024-21068"},{"cve":"CVE-2024-21094","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2024-21094"}],"notes":[{"category":"general","text":"unknown","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2024-21094","url":"https://www.suse.com/security/cve/CVE-2024-21094"},{"category":"external","summary":"SUSE Bug 1222986 for CVE-2024-21094","url":"https://bugzilla.suse.com/1222986"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.7,"baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","version":"3.1"},"products":["SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Basesystem 15 SP6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","SUSE Linux Enterprise Module for Legacy 15 SP6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-demo-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-devel-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-headless-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1.noarch","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-jmods-17.0.11.0-150400.3.42.1.x86_64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.aarch64","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.ppc64le","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.s390x","openSUSE Leap 15.6:java-17-openjdk-src-17.0.11.0-150400.3.42.1.x86_64"]}],"threats":[{"category":"impact","date":"2024-06-18T11:05:03Z","details":"low"}],"title":"CVE-2024-21094"}]}