ELA-901-1 openjdk-8 security update

multiple vulnerabilities

2023-07-27
Packageopenjdk-8
Version8u382-ga-1~deb8u1 (jessie), 8u382-ga-1~deb9u1 (stretch)
Related CVEs CVE-2023-22045 CVE-2023-22049


Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in bypass of sandbox restrictions, information disclosure or denial of service.



For Debian 8 jessie, these problems have been fixed in version 8u382-ga-1~deb8u1.

For Debian 9 stretch, these problems have been fixed in version 8u382-ga-1~deb9u1.

We recommend that you upgrade your openjdk-8 packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.