OpenJDK: Multiple Vulnerabilities

OpenJDK: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in OpenJDK, the worst of which can lead to remote code execution. openjdk,openjdk-bin,openjdk-jre-bin 2024-01-17 2024-01-17 859376 859400 877597 891323 908243 remote 8.372_p07 11.0.19_p7 17.0.7_p7 8.372_p07 11.0.19_p7 17.0.7_p7 8.372_p07 11.0.19_p7 17.0.7_p7 8.372_p07 11.0.19_p7 17.0.7_p7 8.372_p07 11.0.19_p7 17.0.7_p7 8.372_p07 11.0.19_p7 17.0.7_p7

OpenJDK is an open source implementation of the Java programming language.

Multiple vulnerabilities have been discovered in OpenJDK. Please review the CVE identifiers referenced below for details.

Please review the referenced CVE identifiers for details.

There is no known workaround at this time.

All OpenJDK users should upgrade to the latest versions:


          # emerge --sync
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-8.372_p07"
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-11.0.19_p7"
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-17.0.7_p7"

All OpenJDK JRE binary users should upgrade to the latest version:


          # emerge --sync
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-jre-bin-8.372_p07"
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-jre-bin-11.0.19_p7"
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-jre-bin-17.0.7_p7"

All OpenJDK binary users should upgrade to the latest version:


          # emerge --sync
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-bin-8.372_p07"
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-bin-11.0.19_p7"
          # emerge --ask --oneshot --verbose ">=dev-java/openjdk-bin-17.0.7_p7"

CVE-2022-21540 CVE-2022-21541 CVE-2022-21549 CVE-2022-21618 CVE-2022-21619 CVE-2022-21624 CVE-2022-21626 CVE-2022-21628 CVE-2022-34169 CVE-2022-39399 CVE-2022-42920 CVE-2023-21830 CVE-2023-21835 CVE-2023-21843 graaff graaff