{"affected":[{"ecosystem_specific":{"binaries":[{"java-1_7_0-openjdk":"1.7.0.311-43.50.2","java-1_7_0-openjdk-demo":"1.7.0.311-43.50.2","java-1_7_0-openjdk-devel":"1.7.0.311-43.50.2","java-1_7_0-openjdk-headless":"1.7.0.311-43.50.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP5","name":"java-1_7_0-openjdk","purl":"pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.7.0.311-43.50.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-1_7_0-openjdk":"1.7.0.311-43.50.2","java-1_7_0-openjdk-demo":"1.7.0.311-43.50.2","java-1_7_0-openjdk-devel":"1.7.0.311-43.50.2","java-1_7_0-openjdk-headless":"1.7.0.311-43.50.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP5","name":"java-1_7_0-openjdk","purl":"pkg:rpm/suse/java-1_7_0-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.7.0.311-43.50.2"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for java-1_7_0-openjdk fixes the following issues:\n\n- Update to 2.6.27 - OpenJDK 7u311 (July 2021 CPU)\n\nSecurity fixes:\n\n- CVE-2021-2341: Improve file transfers (bsc#1188564)\n- CVE-2021-2369: Better jar file validation (bsc#1188565)\n- CVE-2021-2432: Provide better LDAP provider support (bsc#1188568)\n- CVE-2021-2163: Enhance opening JARs (bsc#1185055)\n- CVE-2021-2161: Less ambiguous processing (bsc#1185056)\n- CVE-2018-3639: Fix revision to prefer\n","id":"SUSE-SU-2021:3007-1","modified":"2021-09-09T13:22:06Z","published":"2021-09-09T13:22:06Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20213007-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1185055"},{"type":"REPORT","url":"https://bugzilla.suse.com/1185056"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188564"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188565"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188568"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-3639"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-2161"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-2163"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-2341"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-2369"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-2432"}],"related":["CVE-2018-3639","CVE-2021-2161","CVE-2021-2163","CVE-2021-2341","CVE-2021-2369","CVE-2021-2432"],"summary":"Security update for java-1_7_0-openjdk","upstream":["CVE-2018-3639","CVE-2021-2161","CVE-2021-2163","CVE-2021-2341","CVE-2021-2369","CVE-2021-2432"]}