[Git][security-tracker-team/security-tracker][master] openjdk-11 DSA

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c21a3131 by Moritz Mühlenhoff at 2023-01-28T18:32:29+01:00
openjdk-11 DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -35080,7 +35080,6 @@ CVE-2022-39400 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
 	- mysql-8.0 8.0.31-1 (bug #1024016)
 CVE-2022-39399 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
 	- openjdk-11 11.0.17+8-1
-	[bullseye] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	[buster] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	- openjdk-17 17.0.5+8-1
 	[bullseye] - openjdk-17 <postponed> (Minor issue, fix along with next CPU)
@@ -94414,7 +94413,6 @@ CVE-2022-21629 (Vulnerability in the JD Edwards EnterpriseOne Tools product of O
 CVE-2022-21628 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
 	- openjdk-8 8u352-ga-1
 	- openjdk-11 11.0.17+8-1
-	[bullseye] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	[buster] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	- openjdk-17 17.0.5+8-1
 	[bullseye] - openjdk-17 <postponed> (Minor issue, fix along with next CPU)
@@ -94424,14 +94422,12 @@ CVE-2022-21627 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virt
 CVE-2022-21626 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
 	- openjdk-8 8u352-ga-1
 	- openjdk-11 11.0.17+8-1
-	[bullseye] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	[buster] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 CVE-2022-21625 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-8.0 8.0.31-1 (bug #1024016)
 CVE-2022-21624 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
 	- openjdk-8 8u352-ga-1
 	- openjdk-11 11.0.17+8-1
-	[bullseye] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	[buster] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	- openjdk-17 17.0.5+8-1
 	[bullseye] - openjdk-17 <postponed> (Minor issue, fix along with next CPU)
@@ -94448,7 +94444,6 @@ CVE-2022-21620 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virt
 CVE-2022-21619 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
 	- openjdk-8 8u352-ga-1
 	- openjdk-11 11.0.17+8-1
-	[bullseye] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	[buster] - openjdk-11 <postponed> (Minor issue, fix along with next CPU)
 	- openjdk-17 17.0.5+8-1
 	[bullseye] - openjdk-17 <postponed> (Minor issue, fix along with next CPU)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[28 Jan 2023] DSA-5331-1 openjdk-11 - security update
+	{CVE-2022-21619 CVE-2022-21624 CVE-2022-21626 CVE-2022-21628 CVE-2022-39399 CVE-2023-21835 CVE-2023-21843}
+	[bullseye] - openjdk-11 11.0.18+10-1~deb11u1
 [27 Jan 2023] DSA-5330-1 curl - security update
 	{CVE-2022-32221 CVE-2022-43552}
 	[bullseye] - curl 7.74.0-1.3+deb11u5


=====================================
data/dsa-needed.txt
=====================================
@@ -33,8 +33,6 @@ netatalk
 multipath-tools
   Tobias Frost proposed a potential update to be reviewed, maintainer asked to review changes
 --
-openjdk-11 (jmm)
---
 openjdk-17 (jmm)
 --
 php-cas



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c21a3131726b05da6e30dd11fe5f80ad51da2880

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c21a3131726b05da6e30dd11fe5f80ad51da2880
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230128/e7c234b3/attachment-0001.htm>