ELA-854-1 openjdk-8 security update

multiple vulnerabilities

2023-05-26
Packageopenjdk-8
Version8u372-ga-1~deb8u1 (jessie), 8u372-ga-1~deb9u1 (stretch)
Related CVEs CVE-2023-21930 CVE-2023-21937 CVE-2023-21938 CVE-2023-21939 CVE-2023-21954 CVE-2023-21967 CVE-2023-21968


Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in information disclosure or denial of service.



For Debian 8 jessie, these problems have been fixed in version 8u372-ga-1~deb8u1.

For Debian 9 stretch, these problems have been fixed in version 8u372-ga-1~deb9u1.

We recommend that you upgrade your openjdk-8 packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.