| Summary: | <dev-java/openjdk{-bin,-jre-bin}-{8.252_p09,11.0.7_p10},: Multiple vulnerabilities (CVE-2020-{2585,2755,2756,2757,2773,2781,2800,2803,2805,2830}) | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Sam James <sam> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED FIXED | ||
| Severity: | normal | CC: | gyakovlev, java |
| Priority: | Normal | Keywords: | CC-ARCHES |
| Version: | unspecified | Flags: | nattka:
sanity-check+
|
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | B2 [glsa+ cve] | ||
| Package list: |
=dev-java/openjdk-8.252_p09 amd64 ppc64
=dev-java/openjdk-bin-8.252_p09
=dev-java/openjdk-jre-bin-8.252_p09 amd64
|
Runtime testing required: | --- |
| Bug Depends on: | |||
| Bug Blocks: | 717632 | ||
|
Description
Sam James
2020-04-21 09:49:35 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=681cb8b798ca725925a5e79a6d1d1b2e0fceaf9f commit 681cb8b798ca725925a5e79a6d1d1b2e0fceaf9f Author: Georgy Yakovlev <gyakovlev@gentoo.org> AuthorDate: 2020-04-21 17:42:02 +0000 Commit: Georgy Yakovlev <gyakovlev@gentoo.org> CommitDate: 2020-04-21 20:26:25 +0000 dev-java/openjdk-jre-bin: bump to 11.0.7_p10 Bug: https://bugs.gentoo.org/718720 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Georgy Yakovlev <gyakovlev@gentoo.org> dev-java/openjdk-jre-bin/Manifest | 1 + .../openjdk-jre-bin-11.0.7_p10.ebuild | 97 ++++++++++++++++++++++ 2 files changed, 98 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b23377ca0e6a41a5e553dd5c872379e122080645 commit b23377ca0e6a41a5e553dd5c872379e122080645 Author: Georgy Yakovlev <gyakovlev@gentoo.org> AuthorDate: 2020-04-21 17:40:26 +0000 Commit: Georgy Yakovlev <gyakovlev@gentoo.org> CommitDate: 2020-04-21 20:26:25 +0000 dev-java/openjdk-jre-bin: bump to 8.252_p09 Bug: https://bugs.gentoo.org/718720 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Georgy Yakovlev <gyakovlev@gentoo.org> dev-java/openjdk-jre-bin/Manifest | 1 + .../openjdk-jre-bin-8.252_p09.ebuild | 84 ++++++++++++++++++++++ 2 files changed, 85 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9dd93fdb5aa9afb4dfabe91229e5742cf3e7b418 commit 9dd93fdb5aa9afb4dfabe91229e5742cf3e7b418 Author: Georgy Yakovlev <gyakovlev@gentoo.org> AuthorDate: 2020-04-21 17:34:20 +0000 Commit: Georgy Yakovlev <gyakovlev@gentoo.org> CommitDate: 2020-04-21 20:26:24 +0000 dev-java/openjdk-bin: bump to 11.0.7_p10 Bug: https://bugs.gentoo.org/718720 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Georgy Yakovlev <gyakovlev@gentoo.org> dev-java/openjdk-bin/Manifest | 4 + dev-java/openjdk-bin/openjdk-bin-11.0.7_p10.ebuild | 116 +++++++++++++++++++++ 2 files changed, 120 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9e727e4b360c88c6d9042e3eedbc1dd8687c6824 commit 9e727e4b360c88c6d9042e3eedbc1dd8687c6824 Author: Georgy Yakovlev <gyakovlev@gentoo.org> AuthorDate: 2020-04-21 17:27:10 +0000 Commit: Georgy Yakovlev <gyakovlev@gentoo.org> CommitDate: 2020-04-21 20:26:23 +0000 dev-java/openjdk-bin: bump to 8.252_p09 Bug: https://bugs.gentoo.org/718720 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Georgy Yakovlev <gyakovlev@gentoo.org> dev-java/openjdk-bin/Manifest | 4 + dev-java/openjdk-bin/openjdk-bin-8.252_p09.ebuild | 93 +++++++++++++++++++++++ 2 files changed, 97 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=08f405dabb2d12a38d3589823a1e2f03fa8af6c7 commit 08f405dabb2d12a38d3589823a1e2f03fa8af6c7 Author: Georgy Yakovlev <gyakovlev@gentoo.org> AuthorDate: 2020-04-21 17:42:54 +0000 Commit: Georgy Yakovlev <gyakovlev@gentoo.org> CommitDate: 2020-04-21 20:26:23 +0000 dev-java/openjdk: bump to 11.0.7_p10 Bug: https://bugs.gentoo.org/713180 Bug: https://bugs.gentoo.org/718720 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Georgy Yakovlev <gyakovlev@gentoo.org> dev-java/openjdk/Manifest | 1 + dev-java/openjdk/openjdk-11.0.7_p10.ebuild | 274 +++++++++++++++++++++++++++++ 2 files changed, 275 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=81a673431eedb9993ec488f765f9cd433269f0f4 commit 81a673431eedb9993ec488f765f9cd433269f0f4 Author: Georgy Yakovlev <gyakovlev@gentoo.org> AuthorDate: 2020-04-21 17:30:22 +0000 Commit: Georgy Yakovlev <gyakovlev@gentoo.org> CommitDate: 2020-04-21 20:26:17 +0000 dev-java/openjdk: bump to 8.252_p09 Bug: https://bugs.gentoo.org/706638 Bug: https://bugs.gentoo.org/718720 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Georgy Yakovlev <gyakovlev@gentoo.org> dev-java/openjdk/Manifest | 8 ++ dev-java/openjdk/openjdk-8.252_p09.ebuild | 224 ++++++++++++++++++++++++++++++ 2 files changed, 232 insertions(+) bump done, let it bake couple days in the tree icedtea also needs those patches, but not released yet. merging openjdk-bin-11.0.7_p10 with USE="-examples" leads to removed 'lib/libfreetype.so' rm: cannot remove 'demo/': No such file or directory * ERROR: dev-java/openjdk-bin-11.0.7_p10::gentoo failed (install phase): * (no error message) * * Call stack: * ebuild.sh, line 125: Called src_install * environment, line 1371: Called die * The specific snippet of code: * rm -vr demo/ || die; just removing the "example" use flag from the ebuild fixes the bug for me, seems the demo folder got removed (In reply to Georgy Yakovlev from comment #2) > bump done, let it bake couple days in the tree > > icedtea also needs those patches, but not released yet. Unable to check for sanity:
> no match for package: =dev-java/openjdk-re-bin-8.242_p08-r1
arm64 stable amd64 stable ppc64 stable old versions dropped, done. security please proceed. This issue was resolved and addressed in GLSA 202006-22 at https://security.gentoo.org/glsa/202006-22 by GLSA coordinator Aaron Bauman (b-man). |