[Git][security-tracker-team/security-tracker][master] openjdk-11 fixed

Moritz Muehlenhoff jmm at debian.org
Fri Jan 25 14:32:40 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0cac8ecd by Moritz Muehlenhoff at 2019-01-25T14:31:52Z
openjdk-11 fixed
mark one sunec issue as undetermined, unclear whether that actually affects
  OpenJDK

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10953,7 +10953,7 @@ CVE-2019-2423 (Vulnerability in the PeopleSoft Enterprise PeopleTools component
 CVE-2019-2422 (Vulnerability in the Java SE component of Oracle Java SE ...)
 	- openjdk-7 <unfixed>
 	- openjdk-8 <unfixed>
-	- openjdk-11 <unfixed>
+	- openjdk-11 11.0.2+9-1
 CVE-2019-2421 (Vulnerability in the PeopleSoft Enterprise HCM eProfile Manager ...)
 	NOT-FOR-US: Oracle
 CVE-2019-2420 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
@@ -35523,10 +35523,8 @@ CVE-2018-12439 (MatrixSSL through 3.9.5 Open allows a memory-cache side-channel
 	- matrixssl <removed>
 CVE-2018-12438 (The Elliptic Curve Cryptography library (aka sunec or libsunec) allows ...)
 	- openjdk-7 <not-affected> (Didn't include/build sunec, see #750400)
-	- openjdk-8 <unfixed> (low)
-	[stretch] - openjdk-8 <postponed> (Wait until next OpenJDK security release)
-	- openjdk-10 <removed> (low)
-	- openjdk-11 <unfixed> (low)
+	- openjdk-8 <undetermined>
+	- openjdk-11 <undetermined>
 CVE-2018-12437 (LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ...)
 	- libtomcrypt 1.18.2-1 (low; bug #901626)
 	[stretch] - libtomcrypt <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0cac8ecd0382bfe906538dcd58fa0dafb10b6ab1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0cac8ecd0382bfe906538dcd58fa0dafb10b6ab1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190125/49191062/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list