Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 831446 (CVE-2022-21248, CVE-2022-21271, CVE-2022-21277, CVE-2022-21282, CVE-2022-21283, CVE-2022-21291, CVE-2022-21293, CVE-2022-21294, CVE-2022-21296, CVE-2022-21299, CVE-2022-21305, CVE-2022-21340, CVE-2022-21341, CVE-2022-21349, CVE-2022-21360, CVE-2022-21365, CVE-2022-21366) - <dev-java/openjdk{,-jre-bin,-bin}-{8.322_p06,11.0.14_p9,17.0.2_p8}: multiple vulnerabilities (Oracle CPU Jan 2022)
Summary: <dev-java/openjdk{,-jre-bin,-bin}-{8.322_p06,11.0.14_p9,17.0.2_p8}: multiple ...
Status: IN_PROGRESS
Alias: CVE-2022-21248, CVE-2022-21271, CVE-2022-21277, CVE-2022-21282, CVE-2022-21283, CVE-2022-21291, CVE-2022-21293, CVE-2022-21294, CVE-2022-21296, CVE-2022-21299, CVE-2022-21305, CVE-2022-21340, CVE-2022-21341, CVE-2022-21349, CVE-2022-21360, CVE-2022-21365, CVE-2022-21366
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://openjdk.java.net/groups/vulne...
Whiteboard: B3 [glsa? cleanup]
Keywords:
Depends on: 832523
Blocks:
  Show dependency tree
 
Reported: 2022-01-19 03:49 UTC by John Helmert III
Modified: 2022-04-21 20:08 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-01-19 03:49:55 UTC
Affected versions are 17.0.1, 15.0.5, 13.0.9, 11.0.13, 8u312, 7u321 according to URL, so please bump.
Comment 1 Georgy Yakovlev archtester gentoo-dev 2022-01-19 04:18:27 UTC
no new tags as of today yet.
will bump as soon as releases get -ga tags.
Comment 2 Georgy Yakovlev archtester gentoo-dev 2022-01-20 07:25:05 UTC
pushed source versions. no bins yet.
will call for stabilization after bins land and source ebuilds tested. a lot of changes went in this time
Comment 3 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-04-21 20:08:23 UTC
openjdk{-jre-bin,} fixed in tree in:

8.322_p06 11.0.14_p9

openjdk-bin fixed in tree in:

8.322_p06 11.0.14_p9 17.0.2_p8

So, please cleanup