This update for java-1_8_0-ibm fixes the following issues :

Update to Java 8.0 Service Refresh 6 Fix Pack 15 [bsc#1175259, bsc#1174157] CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14556 CVE-2020-14621 CVE-2020-14593 CVE-2020-14583 CVE-2019-17639

  - Class Libraries :

  - JAVA.UTIL.ZIP.DEFLATER OPERATIONS THROW     JAVA.LANG.INTERNALERROR

  - JAVA 8 DECODER OBJECTS CONSUME A LARGE AMOUNT OF JAVA     HEAP

  - TRANSLATION MESSAGES UPDATE FOR JCL

  - UPDATE TIMEZONE INFORMATION TO TZDATA2020A

  - Java Virtual Machine :

  - IBM JAVA REGISTERS A HANDLER BY DEFAULT FOR SIGABRT

  - LARGE MEMORY FOOTPRINT HELD BY TRACECONTEXT OBJECT

  - JIT Compiler :

  - CRASH IN THE INTERPRETER AFTER OSR FROM INLINED     SYNCHRONIZED METHOD IN DEBUGGING MODE

  - INTERMITTENT ASSERTION FAILURE REPORTED

  - CRASH IN RESOLVECLASSREF() DURING AOT LOAD

  - JIT CRASH DURING CLASS UNLOADING IN     J9METHOD_HT::ONCLASSUNLOADING()

  - SEGMENTATION FAULT WHILE COMPILING A METHOD

  - UNEXPECTED CLASSCASTEXCEPTION THROWN IN HIGH LEVEL     PARALLEL APPLICATION ON IBM Z PLATFORM

  - Security :

  - CERTIFICATEEXCEPTION OCCURS WHEN FILE.ENCODING PROPERTY     SET TO NON DEFAULT VALUE

  - CHANGES TO IBMJCE AND IBMJCEPLUS PROVIDERS

  - IBMJCEPLUS FAILS, WHEN THE SECURITY MANAGER IS ENABLED,     WITH DEFAULT PERMISSIONS, SPECIFIED IN JAVA.POLICY FILE

  - IN CERTAIN INSTANCES, IBMJCEPLUS PROVIDER THROWS     EXCEPTION FROM KEYFACTORY CLASS

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Detections

Analytics

SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2020:2461-1)

medium Nessus Plugin ID 140257

Version 1.5