SUSE Container Update Advisory: bci/openjdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2024:3242-1 Container Tags : bci/openjdk:21 , bci/openjdk:21-16.2 , bci/openjdk:latest Container Release : 16.2 Severity : important Type : security References : 1219660 1227298 1228046 1228047 1228048 1228051 1228052 CVE-2024-21131 CVE-2024-21138 CVE-2024-21140 CVE-2024-21145 CVE-2024-21147 CVE-2024-24577 ----------------------------------------------------------------- The container bci/openjdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2024:2578-1 Released: Mon Jul 22 12:36:15 2024 Summary: Security update for java-21-openjdk Type: security Severity: important References: 1227298,1228046,1228047,1228048,1228051,1228052,CVE-2024-21131,CVE-2024-21138,CVE-2024-21140,CVE-2024-21145,CVE-2024-21147 This update for java-21-openjdk fixes the following issues: Updated to version 21.0.4+7 (July 2024 CPU): - CVE-2024-21131: Fixed a potential UTF8 size overflow (bsc#1228046). - CVE-2024-21138: Fixed an infinite loop due to excessive symbol length (bsc#1228047). - CVE-2024-21140: Fixed a pre-loop limit overflow in Range Check Elimination (bsc#1228048). - CVE-2024-21147: Fixed an out-of-bounds access in 2D image handling (bsc#1228052). - CVE-2024-21145: Fixed an index overflow in RangeCheckElimination (bsc#1228051). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2024:2579-1 Released: Mon Jul 22 12:36:34 2024 Summary: Security update for git Type: security Severity: important References: 1219660,CVE-2024-24577 This update for git fixes the following issues: - CVE-2024-24577: Fixed arbitrary code execution due to heap corruption in git_index_add (bsc#1219660) The following package changes have been done: - git-core-2.43.0-150600.3.6.1 updated - java-21-openjdk-headless-21.0.4.0-150600.3.3.1 updated - java-21-openjdk-21.0.4.0-150600.3.3.1 updated