-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4734-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff July 26, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : openjdk-11 CVE ID : CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 Several vulnerabilities have been discovered in the OpenJDK Java runtime, resulting in denial of service, bypass of access/sandbox restrictions or information disclosure. For the stable distribution (buster), these problems have been fixed in version 11.0.8+10-1~deb10u1. We recommend that you upgrade your openjdk-11 packages. For the detailed security status of openjdk-11 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/openjdk-11 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl8d36kACgkQEMKTtsN8 TjYPxhAAwEQo33HueV7ah4XwJn0gvZgxnsM4aceTTUuWcM8Nqg0nb6EAkTkgZBCA 74ChnY+XQbL8oi6yytyZPokYPiho2jqutDE7+2azMpObxN50fja4iTD9Wf/Djg1x YfNpUq3Dd+gw134JFHonqPFens76Rox/Aoj/jbnLPKH41+TdgNIDqBeRq1NjGC6b Xa5trVS9KvWRWIcirupAIC9S3Kqrk5+i1Nt8avpa2/LJbeIWpzD8HeSIxocvqhTH cKKnxfazYWcnWmV2ElJcs9NbpUIneRXgdjffZpRSOChdl3RFxvv85ugjIspWwOta HbM/CQJgHDI7/SoUXlUTtaArGv7WFa7dwHIMlOBIu653vQw2Q6rMsb3K9C/fnRyv wxriWNVZVQG29UTLi1qBa0LnQitOZO6CDaLEeUcy7VF2V/HXb+PV92u+Np+X15qK txQIL19m3Cx7LmCcGllBUcUmHxMVkfh8e/AO/yIGLxMy+k/WRWIjk9AaGrCUcg71 uFeEw5ebTD3aTfrEtVNzah0shLT2t3eTdQzY3lR7I5LB/Zgy/O/MVIrVdxa7oQDP Zz0aMSq9pkyxaK0hb0V0MqBmpPm88WvAlSfdMaNvu0Zs/iH6HsnTCuUIijcrrcS/ 1Rw3khyHJUX5XocEiGxYI4qE7iPBK1GvX0N6aCIGZSdAET+ZNHY= =MH8c -----END PGP SIGNATURE-----