Opened 14 hours ago
Last modified 14 hours ago
#20540 assigned enhancement
jdk-23.0.1
Reported by: | Douglas R. Reno | Owned by: | Douglas R. Reno |
---|---|---|---|
Priority: | elevated | Milestone: | 12.3 |
Component: | BOOK | Version: | git |
Severity: | normal | Keywords: | |
Cc: |
Description
New point version
Contains the following security fixes relevant to us:
- CVE-2024-21235 (Hotspot Component) - 4.8 Medium, Network exploitable, Low Confidentiality and Integrity impact
- CVE-2024-21210 (Hotspot Component) - 3.7 Low, Network exploitable, Low Integrity impact
- CVE-2024-21211 (Compiler Component) - 3.7 Low, Network exploitable, Low Integrity impact
- CVE-2024-21208 (Networking Component) - 3.7 Low, Network exploitable, Low Availability impact
- CVE-2024-21217 (Serialization Component) - 3.7 Low, Network exploitable, Low Availability impact
Before I can work on this though, I'd like a decision regarding reverting poppler. I will need to use Libreoffice to test this, as well as fop, so I'd like to do Libreoffice/fop/this package at the same time.
Note:
See TracTickets
for help on using tickets.